SPECIFICATION 



TO ALL WHOM IT MAY CONCERN: 

BE IT KNOWN THAT I, MASUYOSHI YACHIDA, a 
citizen of Japan residing at Kanagawa, Japan have 
invented certain new and useful improvements in 

ELECTRONIC EQUIPMENT, EQUIPMENT MANAGING APPARATUS, 
EQUIPMENT MAINTENANCE SYSTEM, EQUIPMENT MAINTENANCE 
METHOD AND COMPUTER- READABLE STORAGE MEDIUM 

of which the following is a specification:- 
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BACKGROUND OF THE INVENTION 

This application claims the benefit of a 

Japanese Patent Applications No. 2003-077822 filed March 

20^ 2003 and No . 2004-059559 filed March 3, 2004, in the 

5 Japanese Patent Office, the disclosures of which are 

hereby incorporated by reference. 
1. Field of the Invention 

The present invention generally relates to 

electronic equipments, equipment managing apparatuses, 

10 equipment maintenance systems, equipment maintenance 
methods and computer-readable storage media, and more 
particularly to an electronic equipment which may 
require maintenance and is set with a maintenance range, 
an equipment managing apparatus, an equipment 

15 maintenance system, an equipment maintenance method and 
a computer-readable storage medium which are suited for 
managing the maintenance of such an electronic equipment. 

In this specification, the electronic 
equipment refers to an equipment or an apparatus which 

20 may require maintenance. The electronic equipment thus 
includes information processing apparatuses (hereinafter 
referred to as information equipments) including servers, 
general-purpose computers and personal computers; office 
automation equipments (OA equipments) including copying 

25 apparatuses, facsimile apparatuses, printing apparatuses 
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and composite apparatuses; point-of-sales terminal 
equipments (POS terminal equipments) ; medical 
equipments; vending machines; electrical home 
appliances; and portable terminal equipments including 
5 portable telephones. 

2. Description of the Related Art 

Recently, work related to company activities, 
and particularly various work in offices, are carried 
out electronically. In addition, the work is not 

10 limited to the bounds of an in-house network of the 
company such as a local area network (LAN) , and is 
efficiently carried out by utilizing external networks 
outside the company, such as the Internet. As a result, 
the work related' to the company activities is greatly 

15 dependent on information systems, and it is extremely 
important that electronic equipments such as personal 
computers which form each information system operate 
correctly and are managed correctly. 

Generally, as methods of performing 

20 maintenance of the electronic equipment, there is the 

method which sends a person (maintenance person) from a 
maintenance company which provides maintenance services, 
and the method which performs the so-called remote 
maintenance from a remote location via a telephone line 

25 or a network. Recently, the remote-maintenance is 
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rapidly becoming popular because it can provide quick 
services. 

Basically, two kinds of information may be 
stored within the electronic equipment, namely, a first 
5 kind of information and a second kind of information. 

The first kind of information relates to the 
general management and maintenance of the equipment, 
such as an inspection to determine whether or not the 
equipment itself operates correctly, an accounting 

10 depending on a number of times the equipment is used, 
and an addition or updating of a software operating in 
the equipment. This first kind of information is the 
responsibility of a company which provided the equipment 
or a company which performs the maintenance of the 

15 equipment, and is managed by such companies, and not by 
a user who uses the equipment. Particular examples of 
the first kind of information include information 
indicating a state where a failure is generated in the 
equipment, an additional software which adds new 

20 functions to the equipment, and a recovery software 

which performs a recovery to solve problems generated in 
the equipment. 

On the other hand, the second kind of 
information is dependent on the user who uses the 

25 equipment in an organization or company environment in 
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which the equipment is set up, and is related to 
information such as information generated by use of each 
information system, and management information which is 
set to manage security. Particular examples of the 
5 second kind of information include documents and 

information that are created, security information for 
making a security setting with respect to the equipment, 
and user information. 

The first and second kind of information are 

10 important from the point of view of managing the 

equipment itself and managing the user security, and 
must be safely treated. The second kind of information 
in particular, such as the information managed by the 
user and the information related to the general work, 

15 must not leak outside the organization or company 

environment of the user, and must be prevented from 
leaking to the company which provided the equipment or 
to the company which performs the maintenance of the 
equipment . 

20 In other words, the second kind of information 

such as the user information may include confidential or 
secret information. For this reason, it is necessary to 
enable appropriate maintenance of the equipment by the 
maintenance person while preventing illegal access to 

25 the second kind of information. 
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An equipment authentication and enciphered 
communication system for securing safety of remote end 
terminals managed by a managing center, has been 
proposed in a Japanese Laid-Open Patent Application 
5 No. 11-313056. According to this proposed system, 

information does not need to be transferred among the 
terminals because the terminals do not need to link to 
one another, and it is unnecessary to secure safety 
among the terminal. 

10 On the other hand, various proposals have been 

made on techniques related to functions of the equipment 
set by the user and techniques related to equipment 
management such as remote-diagnosis. A remote 
maintenance system and a remote maintenance equipment 

15 which can perform appropriate maintenance without having 
to go to a site where the equipment to be managed is set 
up, has been proposed in a Japanese Laid-Open Patent 
Application No. 2000-132364 . 

In addition, with regard to authentication of 

20 the equipment, a method of communicating via a low- 
reliability channel has been proposed in a Japanese 
Laid-Open Patent Application No. 2001-148697, and a 
communication processing method for positively approving 
no-connection communication and maintaining secrecy has 

25 been proposed in a Japanese Laid-Open Patent Application 
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No. 10-145610. 

Furthermore, a medical image diagnosis 
apparatus for controlling access right to services 
provided by the equipment by user authentication, a 
5 security managing method therefor .and a maintenance 
managing method therefor have been proposed in a 
Japanese Laid-Open Patent Application No. 2001-344349. 

Conventionally, the user signs a contract with 
a maintenance company or the like who performs the 

10 maintenance of the equipment, and determines in advance 
the kind of maintenance to be performed depending on the 
user environment and the like. Accordingly, with regard 
to a predetermined portion of the equipment, which falls 
outside a maintenance range specified by the contract, 

15 it is possible to prevent even the maintenance person 

from making access thereto. As a result, it is possible 
to prevent the maintenance person from making an illegal 
access to the predetermined portion of the equipment. 
However, in a case where it is essential to make access 

20 to the predetermined portion of the equipment in order 
to eliminate the failure or fault of the equipment, 
there was a problem in that an appropriate maintenance 
cannot be performed. 

On the other hand, if an extremely large 

25 maintenance range is set or the maintenance range is not 
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restricted/ the maintenance person can make access to 
virtually all portions or to all portions of the 
equipment. As a result, it is possible to positively 
and quickly eliminate the failure or fault in the 
5 equipment. However, since the maintenance person can 

make access to virtually all portions or to all portions 
of the equipment, there was a problem in that the 
security becomes poor. In other words, there was a 
problem in that it is impossible to positively prevent a 

10 third person from impersonating the maintenance person 
and illegally accessing the portions of the equipment. 

Therefore, there is a tradeoff relationship 
between the positive and quick maintenance and the 
security improvement (prevention of illegal access) , and 

15 there was a problem in that it is impossible to realize 
both simultaneously. 

SUMMARY OF THE INVENTION 

Accordingly, it is a general object of the 

20 present invention to prpvide a novel and useful 

electronic equipment, equipment managing apparatus, 
equipment maintenance system, equipment maintenance 
method and computer-readable storage medixam, in which 
the problems described above are eliminated. 

25 Another and more specific object of the 



-9- 



present invention is to provide an electronic equipment, 
an equipment managing apparatus, an equipment 
maintenance system, an equipment maintenance method and 
a computer-readable storage medium, which can not only 
5 authenticate an equipment maintenance person and an 
equipment manager (or operator) , but also change a 
maintenance range and/or a management range of the 
electronic equipment, so that the maintenance is 
positively and quickly performed while at the same time 

10 improving the security. ^ 

Still another and more specific object of the 
present invention is to provide an electronic equipment 
having parts which may be subjected to maintenance and 
are specified by a maintenance range, comprising a 

15 setting part which is set with a predetermined 

maintenance range in which the maintenance is permitted; 
an authenticating part to authenticate validity of a 
maintenance-attending person for the electronic 
equipment; and a changing part to temporarily change the 

20 predetermined maintenance range set in the setting part, 
in response to a change instruction, when the 
authenticating part authenticates the validity of the 
maintenance-attending person. According to the 
electronic equipment of the present invention, it is 

25 possible to authenticate the equipment maintenance 
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person and the equipment manager (or operator) , and also 
change the maintenance range of the electronic equipment^ 
so that the maintenance is positively and quickly 
performed while at the same time improving the security. 
5 A further object of the present invention is 

to provide an equipment managing apparatus for 
controlling an electronic equipment which includes a 
setting part which is set with a predetermined 
maintenance range in which maintenance is permitted, a 

10 first authenticating part to authenticate validity of a 
maintenance-attending person for the electronic 
equipment, and a changing part to temporarily change the 
predetermined maintenance range set in the setting part 
in response to a change instruction when the first 

15 authenticating part authenticates the validity of the 
maintenance-attending person, the equipment managing 
apparatus comprising a second authenticating part to 
authenticate validity of an operator of the equipment 
managing apparatus; an input part to permit input of the 

20 change instruction when the second authenticating part 
authenticates the validity of the operator; and a part 
to supply the change instruction input from the input . 
part to the electronic equipment. According to the 
equipment managing apparatus of the present invention, 

25 it is possible to authenticate the equipment maintenance 
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person and the equipment manager (or operator) , and also 
change the maintenance range of the electronic equipment^ 
so that the maintenance is positively and quickly 
performed while at the same time improving the security. 
5 Another object of the present invention is to 

provide an equipment maintenance system for controlling 
a maintenance range in which maintenance of an equipment 
may be performed, comprising a setting part to set in 
advance a maintenance range in which the maintenance of 

10 the equipment is permitted; a first authenticating part 
to authenticate validity of a maintenance-attending 
person for the equipment; and a changing part to 
temporarily change the set maintenance range to a 
predetermined maintenance range based on an 

15 authentication result of the first authenticating part, 
so that the maintenance of the equipment is temporarily 
permitted within the predetermined maintenance range. 
According to the equipment maintenance system of the 
present invention, it is possible to authenticate the 

20 equipment maintenance person and the equipment manager 
(or operator) , and also change the maintenance range of 
the electronic equipment, so that the maintenance is 
positively and quickly performed while at the same time 
improving the security. 

25 Still another object of the present invention 
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is to provide an equipment maintenance method for 
controlling a maintenance range in which maintenance of 
an equipment may be performed^ comprising . the steps of 
(a) setting in advance a maintenance range in which the 
5 maintenance of the equipment is permitted; (b) 

authenticating validity of a maintenance-attending 
person for the equipment; and (c) temporarily changing 
the set maintenance range to a predetermined maintenance 
range based on an authentication result of the step (b) , 

10 so that the maintenance of the equipment is temporarily 
permitted within the predetermined maintenance range. 
According to the equipment maintenance method of the 
present invention^ it is possible to authenticate the 
equipment maintenance person and the equipment manager 

15 (or operator) , and also change the maintenance range of 
the electronic equipment, so that the maintenance is 
positively and quickly performed while at the same time 
improving the security. 

A further object of the present invention is 

20 to provide an electronic equipment having parts which 
may be subjected to maintenance and are specified by a 
maintenance range, comprising setting means set with a 
predetermined maintenance range in which the maintenance 
is permitted; authenticating means for authenticating 

25 validity of a maintenance-attending person for the 
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electronic equipment; and changing means for temporarily 
changing the predetermined maintenance range set in the 
setting means, in response to a change instruction, when 
the authenticating means authenticates the validity of 
5 the maintenance-attending person. According to the 
electronic equipment of the present invention, it is 
possible to authenticate the equipment maintenance 
person and the equipment manager (or operator) , and also 
change the maintenance range of the electronic equipment, 

10 so that the maintenance is positively and quickly 

performed while at the same time improving the security. 

Another object of the present invention is to 
provide an equipment managing apparatus for controlling 
an electronic equipment which includes setting means set 

15 with a predetermined maintenance range in which 

maintenance is permitted, first authenticating means for 
authenticating validity of a maintenance-attending 
person for the electronic equipment, and changing means 
for temporarily changing the predetermined maintenance 

20 range set in the setting part in response to a change 
instruction when the first authenticating means 
authenticates the validity of the maintenance-attending 
person, the equipment managing apparatus comprising 
second authenticating means for authenticating validity 
.25 of an operator of the equipment managing apparatus; 
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input means for permitting input of the change 
instruction when the second authenticating means 
authenticates the validity of the operator; and means 
for supplying the change instruction input from the 
5 input means to the electronic equipment. According to 
the equipment managing apparatus of the present 
invention^ it is possible to authenticate the equipment 
maintenance person . and the equipment manager (or 
operator) , and also change the maintenance range of the 

10 electronic equipment^ so that the maintenance is 

positively and quickly performed while at the same time 
improving the security. 

Still another object of the present invention 
is to provide an equipment maintenance system for 

15 controlling a maintenance range in which maintenance of 
an equipment may be performed, comprising setting means 
for setting in advance a maintenance range in which the 
maintenance of the equipment is permitted; 
authenticating means for authenticating validity of a 

20 maintenance-attending person for the equipment; and 
changing means for temporarily changing the set 
maintenance range to a predetermined maintenance range 
based on an authentication result of the authenticating 
means, so that the maintenance of the equipment is 

25 temporarily permitted within the predetermined 
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maintenance range. According to the equipment 
maintenance system of the present invention, it is 
possible to authenticate the equipment maintenance 
person and the equipment manager (or operator) , and also 
5 change the maintenance range of the electronic equipment, 
so that the maintenance is positively and quickly 
performed while at the same time improving the security. 

A further object of the present invention is 
to provide a computer-readable storage medium which 

10 stores a program for causing a computer to set a 

maintenance range which specifies parts of an electronic 
equipment which may be subjected to maintenance, the 
program comprising a setting procedure causing the 
computer to be set with a predetermined maintenance 

15 range in which the maintenance is permitted; an 
authenticating procedure causing the computer to 
authenticate validity of a maintenance-attending person 
for the electronic equipment; and a changing procedure 
causing the computer to temporarily change the 

20 predetermined maintenance range set in the setting 

procedure, in response to a change instruction, when the 
authenticating procedure authenticates the validity of 
the maintenance-attending person. According to the 
computer-readable storage medium of the present 

25 invention, it is possible to authenticate the equipment 
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maintenance person and the equipment manager (or 
operator) , and also change the maintenance range of the 
electronic equipment^ so that the maintenance is 
positively and quickly performed while at the same time 
5 improving the security. 

Toother object of the present invention is to 
provide a computer-readable storage medium which stores 
a program for causing a computer to manage an electronic 
equipment which includes a setting part set with a 

10 predetermined maintenance range in which maintenance is 
permitted, an authenticating part to authenticate 
validity of a maintenance-attending person for the 
electronic equipment/ and a changing part to temporarily 
change the predetermined maintenance range set in the 

15 setting part in response to a change instruction when 
the authenticating part authenticates the validity of 
the maintenance-attending person, the program comprising 
an authenticating procedure causing the computer to 
authenticate validity of an operator of the computer; an 

20 input procedure causing the computer to permit input of 
the change instruction when the authenticating procedure 
authenticates the validity of the operator; and a 
procedure causing the computer to supply the change 
instruction input by the input procedure to the 

25 electronic equipment. According to the computer- 
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readable storage medium of the present invention, it is 
possible to authenticate the equipment maintenance 
person and the equipment manager (or operator) , and also 
change the maintenance range of the electronic equipment, 
5 so that the maintenance is positively and quickly 

performed while at the same time improving the security. 

Still another object of the present invention 
is to provide a computer-readable storage medium which 
stores a program for causing a computer to control a 

10 maintenance range in which maintenance of an equipment 
may be performed, the program comprising a setting 
procedure causing the computer to set in advance a 
maintenance range in which the maintenance of the 
equipment is permitted; an authenticating procedure 

15 causing the computer to authenticate validity of a 

maintenance-attending person for the equipment; and a 
changing procedure causing the computer to temporarily 
change the set maintenance range to a predetermined 
maintenance range based on an authentication result of 

20 the authenticating procedure, so that the maintenance of 
the equipment is temporarily permitted within the 
predetermined maintenance range. According to the 
computer-readable storage medium of the present 
invention, it is possible to authenticate the equipment 

25 maintenance person and the equipment manager (or 
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operator) , and also change the maintenance range of the 
electronic equipment, so that the maintenance is 
positively and quickly performed while at the same time 
improving the security. 
5 Other objects and further features of the 

present invention will be apparent from the following 
detailed description when read in conjunction with the 
accompanying drawings . 



10 BRIEF DESCRIPTION OF THE DRAWINGS 

FIG. 1 is a diagram showing a structure of an 

electronic equipment for explaining a first embodiment 

of the electronic equipment, an equipment managing 

apparatus, an equipment maintenance system, an equipment 
15 maintenance method and a computer-readable storage 

medium according to the present invention; 

FIG. 2 is a flow chart for explaining a 

maintenance sequence for the electronic equipment in the 

first embodiment; 
20 FIG. 3 is a diagram for explaining setting of 

authentication information and maintenance range 

information in the first embodiment; 

FIG. 4 is a diagram showing a structure of the 

electronic equipment for explaining a second embodiment 
25 of the electronic equipment, the equipment managing 
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apparatus, the equipment maintenance system, the 
equipment maintenance method and the computer-readable 
storage medium according to the present invention; 

FIG. 5 is a diagram showing a structure of the 
5 electronic equipment for explaining a third embodiment 
of the electronic equipment, the equipment managing 
apparatus, the equipment maintenance system, the 
equipment maintenance method and the computer-readable 
storage medium according to the present invention; 

10 FIG. 6 is a diagram for explaining the setting 

of the authentication information and additional 
maintenance range information in the third embodiment; 

FIG. 7 is a system block diagram showing a 
structure of the equipment maintenance system for 

15 explaining a fourth embodiment of the electronic 
equipment, the equipment managing apparatus, the 
equipment maintenance system, the equipment maintenance 
method and the computer-readable storage medium 
according to the present invention; 

20 FIG. 8 is a diagram showing a structure of the 

electronic equipment for explaining the fourth 
embodiment of the electronic equipment, the equipment 
managing apparatus, the equipment maintenance system, 
the equipment maintenance method and the computer- 

25 readable storage medium according to the present 
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invention; 

FIG. 9 is a diagram for explaining the setting 
of the authentication information and the maintenance 
range information in the fourth embodiment; 
5 FIG. 10 is a system block diagram showing a 

system which may be applied with the first embodiment; 

FIG. 11 is a flow chart for explaining an 
embodiment of a maintenance range setting procedure; 

FIG. 12 is a diagram showing a maintenance 
10 person registration screen displayed on a display part; 

FIG. 13 is a flow chart for explaining an 
embodiment of a maintenance procedure; 

FIG. 14 is a diagram showing a maintenance 
work input screen; 
15 FIG. 15 is a flow chart for explaining another 

embodiment of the maintenance procedure; 

FIG. 16 is a flow chart for explaining another 
embodiment of the maintenance procedure; 

FIG. 17 is a flow chart for explaining another 
20 embodiment of the maintenance procedure; 

FIG. 18 is a flow chart for explaining another 
embodiment of the maintenance procedure; 

FIG. 19 is a flow chart for explaining an 
embodiment of a maintenance range changing procedure; 
25 FIG. 20 is a diagram showing a maintenance 
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range changing • screen displayed on the display part; 

FIG. 21 is a flow chart for explaining another 
embodiment of the maintenance range changing procedure; 

FIG. 22 is a diagram showing a maintenance 
5 range changing screen displayed on the display part; 

FIG. 23 is a flow chart for explaining an 
embodiment of a maintenance range adding procedure; 

FIG. 24 is a diagram showing a maintenance 
range adding screen displayed on the display part; 
10 FIG. 25 is a flow chart for explaining an 

embodiment of the maintenance procedure after adding the 
maintenance range; 

FIG. 26 is a system block diagram showing a 
system which enables changing of the maintenance range 
15 by issuing a maintenance permit; 

FIG. 27 is a flow chart for explaining an 
embodiment of a maintenance permit issuing procedure; 

FIG. 28 is a flow chart. for explaining an 
embodiment of the maintenance procedure using the 
20 maintenance permit; 

FIG. 29 is a system block diagram showing a 
system which may be applied with the present invention 
when changing the maintenance range by issuing the 
maintenance permit ; 
25 FIG. 30 is a flow chart for explaining another 
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FIG. 31 is a flow chart for explaining an 
embodiment of a maintenance permit issuing procedure for 
issuing a maintenance permit for remote maintenance; 
5 FIG. 32 is a flow chart for explaining a 

portion of an embodiment of the maintenance procedure 
using the maintenance permit for remote maintenance; 

FIG. 33 is a flow chart for explaining a 
remaining portion of the embodiment of the maintenance 
10 procedure using the maintenance permit for remote 
maintenance ; 

FIG. 34 is a diagram showing a maintenance 
work input screen; 

FIG. 35 is a flow chart for explaining another 
15 embodiment of the maintenance permit issuing procedure 
for issuing the maintenance permit for remote 
maintenance; 

FIG. 36 is a flow chart for explaining an 
embodiment of a mutual authentication procedure between 
20 equipments; and 

FIG. 37 is a flow chart for explaining another 
embodiment of the mutual authentication procedure 
between equipments . 

25 DESCRIPTION OF THE PREFERRED EMBODIMENTS 
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As described above, an object of the present 
invention is to provide an electronic equipment, an 
equipment managing apparatus, an equipment maintenance 
system, an equipment maintenance method and a computer- 
5 readable storage medium,, which can not only authenticate 
a maintenance person and a manager (or operator) , but 
also change a maintenance range and/or a management 
range of the electronic equipment, so that the 
maintenance is positively and quickly performed while at 

10 the same time improving the security. 

In order to achieve this object, the present 
inventor studied authenticating the equipment 
maintenance person and the equipment manager (or 
operator) and also variably setting the maintenance 

15 range and/or the management range of the electronic 

equipment, so as to simultaneously realize positive and 
quick maintenance of the equipment and the improved 
security. 

In other words, the electronic equipment, the 
20 equipment managing apparatus, the equipment maintenance 
system, the equipment maintenance method and the 
computer-readable storage medium according to the 
present invention have the following characterizing 
features . 

25 An electronic equipment having parts which may 
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be subjected to maintenance and are specified by a 
maintenance range^ comprises a setting part or means 
which is set with a predetermined maintenance range in 
which the maintenance is permitted, an authenticating 
5 part or means to authenticate validity of a maintenance- 
attending person for the electronic equipment, and a 
changing part or means to temporarily change the 
predetermined maintenance range set in the setting part 
or means, in response to a change instruction, when the 

10 authenticating part or means authenticates the validity 
of the maintenance-attending person. The maintenance 
range may be set by a maintenance service provider or an 
equipment manager on the side of a user who uses the 
electronic equipment. In addition, by providing the 

15 changing part or means to temporarily changing the 

maintenance range, it is possible to temporarily enable 
maintenance exceeding the predetermined maintenance 
range which is set in advance. The maintenance range 
may be changed by the maintenance service provider or 

20 the equipment manager. In addition, the maintenance 
service provider or the equipment manager may 
temporarily change the maintenance range. Accordingly, 
by adding a specific maintenance range to the normal 
maintenance range, it is possible to temporarily enable 

25 maintenance which exceeds the normal maintenance range. 
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The maintenance-attending person refers to the 
person who attends or is to attend to the maintenance of 
the electronic equipment, and may not. necessarily be the 
maintenance person who is authorized to attend to the 
5 maintenance of the electronic equipment. In other words, 
the maintenance-attending person is the maintenance 
person when authenticated, but may be a third person who 
is unauthorized to perform the maintenance or is 
impersonating the maintenance person when unable to be 
10 authenticated. 

A program for causing a computer to realize 
the above described functions may be installed in an 
equipment managing apparatus and/or the electronic 
equipment, and the program may be stored in the 
15 computer-readable storage medium. 

Next, a description will be given of various 
embodiments of the electronic equipment, the equipment 
managing apparatus, the equipment maintenance system, 
the equipment maintenance method and the computer- 
20 readable storage medium according to the present 
invention, by referring to the drawings. 
[First Embodiment] 

First, a description will be given of a first 
embodiment of the electronic equipment, the equipment 
25 managing apparatus, the equipment maintenance system. 
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the equipment maintenance method and the computer- 
readable storage medium according to the present 
invention. In this embodiment, the present invention is 
applied to a case where the maintenance person goes to a 
5 setup site where the electronic equipment is set up. 

FIG. 1 is a diagram showing a structure of the 
electronic equipment for explaining this first 
embodiment. FIG. 1 shows the functional structure of 
the electronic equipment related particularly to 

10 management information and maintenance functions. 

In FIG. 1, an electronic equipment 100 
includes a manager authenticating part (or means) 10, a 
user authenticating part (or means) 20, a general user 
authenticating part (or means) 30, an access range 

15 setting part (or means) 40, an equipment maintenance 
part (or means) 50, an equipment managing part (or 
means) 60, and an original equipment function executing 
part (or means) 70. A portion or all of these parts (or 
means) 10, 20, 30, 40, 50, 60 and 70 may be realized by 

20 a computer having a known structure made up of a 

processor such as a CPU and an MPU and a memory for 
storing data and programs to be executed by the 
processor. 

The electronic equipment (hereinafter also 
25 simply referred to as an equipment) 100 may be formed by 
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any equipment or apparatus which may require maintenance. 
The equipment 100 may thus be selected from information 
processing apparatuses (hereinafter referred to as 
information equipments) including servers, general- 
5 purpose computers and personal computers; office 

automation equipments (OA equipments) including copying 
apparatuses, facsimile apparatuses, printing apparatuses 
and composite apparatuses; point-of-sales terminal 
equipments (POS terminal equipments) ; medical 

10 equipments; vending machines; electrical home 

appliances; and portable terminal equipments including 
portable telephones. 

The manager authenticating part 10 has a 
function of authenticating that an operator (or user) is 

15 an equipment manager, based on manager authentication 
information supplied thereto. For example, it is 
possible to judge whether the operator is the equipment 
manager or the maintenance person, from a combination of 
a user name and a password. 

20 The user authenticating part 20 authenticates 

the operator (or user) including an equipment 
maintenance person 1, an equipment manager 2 and a 
general user 3, from user authentication information and 
access range information supplied thereto. For example, 

25 a means for identifying the user from the user name and 
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the password, a user ID and a personal identification 
number (PIN) , an IC card and the like may be used as the 
user authenticating part 20. 

User authentication information 21 includes 
5 the user authentication information and the access range 
information, and is used to authenticate the user 
including the equipment maintenance person 1, the 
equipment manager 2 and the general user 3. For example, 
information related to the user or information peculiar 

10 to the user, such as the user name and the password, the 
user ID and the PIN, user information and authentication 
information stored within the IC card, electronic 
information such as personal identification information 
and fingerprint information used for authentication, may 

15 be used as the user authentication information 21. 

The general user authenticating part 30 
authenticates that the operator (or user) is the general 
user 3 from the user authentication information supplied 
thereto. The authentication information obtained in the 

20 general user authenticating part 30 is supplied to the 
. original equipment function executing part 70 which will 
be described later. For example, a means for confirming 
whether or not the operator is the correct general user 
3 based on a combination of the user name and the 

25 password may be used as the general user authenticating 
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part 30. 

Accordingly, the manager authenticating part 
10, the user authenticating part 20 and the general user 
authenticating part 30 form an authenticating part or 
5 means for authenticating validity of the maintenance- 
attending person who performs the maintenance. 

A part or means for permitting maintenance 
within the predetermined maintenance range by the 
maintenance-attending person based on the authentication 

10 by the authenticating part or means, and a part of means 
for enabling the maintenance-attending person to know 
his permitted maintenance range, may further be provided 
separately. As will be described later, the 
predetermined maintenance range refers to the range in 

15 which the maintenance is permitted, where the setting, 

changing and temporary changing of the maintenance range 
is made by the access range setting part 40. The 
maintenance range may be set independently for each 
maintenance person based on a contract or the like. 

20 For example, an IC card may be issued for each 

maintenance person, and the maintenance range in which 
the maintenance person is permitted to attend to the 
maintenance of the electronic equipment is stored in the 
IC card as additional information from an external 

25 server or the like, based on the contract or the like. 
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When the maintenance person is authenticated using the 
IC card/ this maintenance person cannot attend to the 
maintenance in the maintenance range which is set, 
changed or temporarily changed by the access range 
5 setting part 40, unless it is within the permitted 
maintenance range specified by the* additional 
information stored in the IC card. By taking this 
measure, the security of the information within the 
electronic equipment is improved. 

10 In order to enable the maintenance person to 

know this maintenance range, the maintenance range may 
be displayed on a touch panel of the operation part (or 
means) of the equipment 100, based on the information 
stored in the IC card. 

15 Target ranges in which the maintenance and/or 

management of the equipment 100 is to be performed are 
set in the access range setting part 40 based on access 
range information supplied thereto. For example, the 
equipment maintenance person 1 may not perform the 

20 setting related to a network to which the equipment 100 
connects, but the equipment manager 2 may perform the 
setting related to the network. 

The access range setting part 40 functions as 
the part or means for setting, changing and temporarily 

25 changing the maintenance range of the equipment 100. 
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The maintenance service provider (equipment maintenance 
person 1) for providing maintenance services for the 
equipment 100 and the manager (equipment manager 2) for 
managing the equipment 2, set, change and temporarily 
5 change the maintenance range using the access range 
setting part 40. 

The equipment maintenance part 50 has a 
function of performing maintenance of the equipment 100, 
that is, a function of making settings and changes 

10 related to the maintenance. The settings made by the 

equipment maintenance part 50 originally are independent 
of the settings made by the user and peculiar to the 
equipment 100. However, depending on the setting, 
changing and temporary changing of the maintenance range 

15 and the permitted maintenance range of the equipment 

maintenance person 1, the equipment maintenance person 1 
can perform the maintenance within the set, changed or 
temporarily changed maintenance range unless it is 
within the permitted maintenance range. The maintenance 

20 range information is supplied from the access range 

setting part 4 0 to the equipment maintenance part 50. 
In FIG- 1, a maintenance instruction from the equipment 
maintenance part 50 is indicated by a broken line for a 
case where the equipment maintenance person 1 performs 

25 the maintenance, and is indicated by a one-dot chain 
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line for a case where the equipment manager 2 performs 
the maintenance. 

The equipment managing part 60 has a function 
of managing the equipment 100, that is, a function of 
5 making settings and changes related to the management. 
Equipment management information for managing the 
equipment 100 is stored in a storage 61. Hence, the 
equipment managing part 60 carries out a network setting 
depending on the user environment, and sets and changes 
10 utilization information of the general user 3. 

The original equipment function executing part 

70 executes original' target functions of the equipment 
100. User equipment utilization information related to 
the utilization of the functions of the equipment 100 is 

15 stored in a storage 71. The storage 61 and the storage 

71 may be formed by a single storage. For example, if 
the equipment 100 is a copying apparatus, the original 
equipment function executing part 70 executes copying 
functions including reading of a document and copying 

20 the read document image onto a recording sheet such as 
paper. If the equipment 100 is a medical imaging 
equipment, for example, the original equipment function 
executing part 7 0 executes imaging functions including 
generating a medial image. 

25 In other words, if the equipment 100 is a 
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printing apparatus, a means for providing printing 
functions such as printing document information received 
from another electronic equipment corresponds to the 
original equipment function executing part 70. If the 
5 equipment 100 is a facsimile apparatus, a means for 

providing facsimile functions such as transmitting via a 
telephone line document information which is optically 
read or is received from another electronic equipment 
corresponds to the original equipment function executing 

10 part 70. In addition, if the equipment 100 is an 
electrical home appliance, a means for providing 
functions such as reserving a television program 
according to video reservation information corresponds 
to the original equipment function executing part 70. 

15 Furthermore, if the equipment 100 is a medical equipment, 
a means for providing functions such as acquiring and 
generating medical data corresponds to the original 
equipment function executing part 70. 

The people operating the equipment 100 may be 

20 roughly categorized into the general user 3 who uses the 
functions of the equipment 100 by making an equipment 
utilizing operation, the equipment manager 2 who manages 
the equipment 100 by making an equipment maintenance 
operation (or work) and an equipment managing operation 

25 (or work) , and the equipment maintenance person 11 who 
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attends to the maintenance of the equipment 100 by 
making an equipment maintenance operation (or work) . 
The general user 3 and the equipment manager 2 belong to 
the organization or company environment in which the 
5 equipment 100 is set. up. On the other hand, the 

equipment maintenance person 1 is the so-called service 
person belonging to the maintenance service provider who 
provides the maintenance services for the equipment 100. 
The general user 3, the equipment manager 

10 (hereinafter simply referred to as a manager) 2 and the 
equipment maintenance person (hereinafter simply 
referred to as a maintenance person) 3 each indicate, 
with respect to the equipment 100, that the utilization 
of the equipment 100 is authorized or legitimate, using 

15 user information thereof. Hence, the equipment 100 

authenticates the general user 3, the manager 2 and the 
maintenance person 1 based on the user information. If 
the general user 3, the manager 2 or the maintenance 
person 1 is authenticated by the equipment 100, 

20 utilization range setting information of the equipment 
100 is further acquired, so as to enable utilization of 
the equipment 100 within a utilization range which is 
set' by the utilization range setting information. 

The authentication method is not limited to a 

25 specific method. For example, a method which sets an 
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account name and a password or, a method which uses a 
personal authentication base which .utilizes a public key 
infrastructure (PKI) provided by the maintenance service ' 
provider or the organization or company environment in 
5 which the equipment 100 is set up, may be employed as 
the authentication method. More particularly, an 
authentication system which combines a privacy (or 
enciphering) common key and a challenge response, an 
authentication system which combines a privacy key and a 

10 public key, and an authentication system which combines 
a privacy key, a public key and a challenge response may 
be employed as the authentication method. 

The utilization range setting information 
includes not only the maintenance range, but also 

15 information related to the people (maintenance person 
and manager) permitted to perform the maintenance, the 
maintenance term and the target equipment. 

It is desirable that the target equipment 100 
can be specified or identified by information peculiar 

20 to the equipment or the like. 

Since the maintenance person 1 may change, it 
is important to provide a means for confirming validity 
of the maintenance range set for the maintenance person 
1 based on the maintenance term and the like. 

25 Next, a description willbe given of a 
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sequence up to the maintenance of the equipment 100 ^ by 
referring to FIG. 2. FIG. 2 is a flow chart for 
explaining the maintenance of the electronic equipment 
100 in this embodiment. 
5 In FIG. 2, a step SI carries out 

authentication of the maintenance person 1, and a step 

52 acquires the maintenance range information. A step 

53 confirms the validity of the maintenance range 
information^ and a step S4 performs the maintenance of 

10 the equipment 100. 

For example, as shown in FIG. 1, the 
maintenance may be performed within the maintenance 
range set by the manager 2 in the case of daily 
maintenance, and the maintenance person 1 may 

15 periodically set a maintenance range which is different 
from the above maintenance range and maintain the state 
of the equipment 100. When confirming the validity of 
the maintenance range information, it is possible to 
confirm the validity using an electronic signature added 

20 to. the maintenance range information, for example. 

Next, a description will be given of a method 
of setting the authentication information and the 
maintenance range of the maintenance person 1 and the 
manager 2, by referring to FIG. 3. FIG. 3 is a diagram 

25 for explaining the setting of the authentication 
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information and the maintenance range in this embodiment. 
In FIG. 3, the left portion indicates the user 
environment^ and the right portion indicates the 
maintenance service provider . 
5 When setting the information of the 

maintenance person 1, there is a first case where the 
maintenance service provider sets the authentication 
information and the maintenance range information, and a 
second case which uses the authentication information 

10 generated by the maintenance service provider and the 

maintenance range information set by the manager 2. In 
the first case, the maintenance range is set according 
to agreed contents, based on the contract or the like 
between the user and the maintenance person 1 (or 

15 maintenance service provider) , which determines the 
maintenance range. The second case includes a case 
where the manager 2 sets the maintenance range and 
consigns the maintenance to the maintenance person 1 (or 
maintenance service provider) , and a case where the 

20 manager 2 sets the maintenance range and performs the 

maintenance by himself. The authentication information 
and the maintenance range information are important 
information which are desirably managed with tight 
security- For this reason, it is desirable to store the 

25 authentication information and the maintenance range 
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information in a physically tamper-safe mediuim such as 
an IC card. 

In FIG. 3, steps SIX and S12 are carried out 
by an equipment or terminal, such as a computer, 
5 provided at the maintenance service provider, and set 

the authentication information and the maintenance range 
information with respect to the maintenance target 
equipment 100. Steps S21 and S22 are carried out by an 
equipment or terminal, such as a computer, set up in the 

10 user environment and operable by the manager 2, and set 
the authentication information and the maintenance range 
information with respect to the maintenance target 
equipment 100. When using the authentication 
information generated by the maintenance service 

15 provider and the maintenance range information set by 
the manager 2, the authentication information and the 
maintenance range information are set with respect to 
the maintenance target equipment 100 by the steps Sll, 
S12, S21 and S22. 

20 Therefore, according to this embodiment, a 

person can perform maintenance on the maintenance target 
equipment 100 only when the person is authenticated and 
the person indicates the set maintenance range by the 
maintenance range information. As a result, only the 

25 appropriate person can perform the maintenance within 
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the appropriate maintenance range, and it is possible to 
prevent the privacy information and the. like of the user 
from being accessed even by the maintenance person 1. 
[ Second Embodiment ] 
5 Next, a description will be given of a second 

embodiment of the electronic equipment, the equipment 
managing apparatus, the equipment maintenance system, 
the equipment maintenance method and the computer- 
readable storage medium according to the present 

10 invention, by referring to FIG. 4. FIG. 4 is a diagram 
showing a structure of the electronic equipment for 
explaining this second embodiment. FIG. 4 shows the 
functional structure of the electronic equipment related 
particularly to management information and maintenance 

15 functions. In FIG. 4, those parts which are the same as 
those corresponding parts in FIG. 1 are designated by 
the same reference numerals, and a description thereof 
will be omitted. This second embodiment temporarily 
changes the maintenance range. 

20 When a failure is generated in the equipment 

100, the required maintenance, restoration or repair 
work may exceed the normal maintenance range which is 
agreed upon beforehand, depending on the failure. For 
example, such a situation occurs when performing the 

25 maintenance, restoration or repair of a portion which is 
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outside the normal maintenance range and is where the 
management information of the user is stored. 

In this embodiment, the sequence up to the 
maintenance is the same as that shown in FIG. 2. First, 
5 the maintenance-attending person who is to perform the 
maintenance is authenticated in the step SI, and the 
maintenance range information is acquired to set the 
maintenance range in the step S2 . Thereafter, the 
maintenance is performed in the step S4 depending on the 

10 set maintenance range- In this embodiment, it is 

assumed for the sake of convenience that there three 
kinds of maintenance ranges A, B and C, so that the 
maintenance of the portion can be performed in one of 
the maintenance ranges A, B and C depending on the 

15 generated failure. 

The setting of the maintenance range 
information in this embodiment may be made similarly to 
FIG. 3, but in this embodiment, the terminal which sets 
the maintenance range is given the authority to set a 

20 maintenance range which exceeds the normal maintenance 
range which is set in advance. The maintenance range 
which exceeds the normal maintenance range may be set 
depending on the failure. 
[Third Embodiment] 

25 ■ Next, a description will be given of a third 
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embodiment of the electronic equipment, the equipment 
managing apparatus, the equipment maintenance system, 
the equipment maintenance method and the computer- 
readable storage medium according to the present 
5 invention, by referring to FIGS. 5 and 6. 

FIG. 5 is a diagram showing a structure of the 
electronic equipment for explaining this third 
embodiment. FIG. .5 shows the functional structure of 
the electronic equipment related particularly to 

10 management information and maintenance functions. In 
FIG. 5, those parts which are the same as those 
corresponding parts in FIGS. 1 and 4 are designated by 
the same reference numerals, and a description thereof 
will be omitted. FIG. 6 is a diagram for explaining the 

15 setting of the authentication information and additional 
maintenance range information in this third embodiment. 
In FIG. 6, those parts which are the same as those 
corresponding parts in FIG. 3 are designated by the same 
reference numerals, and a description thereof will be 

20 omitted. 

When temporarily changing the maintenance 
range, it is possible to employ a method which set the 
maintenance range by changing the definition of the 
maintenance range itself, a method which adds 
25 maintenance range information which is only valid 



-42- 



temporarily or during a short period of time, or the 
like. The additional maintenance range information is 
set by the maintenance service provider or the manager 2, 
as shown in FIG. 6, and becomes valid when used together 
5 with the authentication information and the maintenance 
range information. The maintenance-attending person who 
performs the maintenance is not limited to the 
maintenance person 1 but may also be the manager 2. In 
this case, the maintenance range is increased in order 

10 to temporarily permit the maintenance person 1 and/or 

the manager 2 to perform the maintenance of the portion 
which is normally not permitted. 

A description will be given of a method of 
setting the authentication information of the 

15 maintenance person 1 and the manager 2 and the 

additional maintenance range, by referring to FIG. 6. 
In FIG. 6, the left portion indicates the user 
environment, and the right portion indicates the 
maintenance service provider. 

20 The additional maintenance range information 

is set by adding a temporarily valid maintenance range 
to the maintenance range information and the 
authentication information which are set in advance. 
The additional maintenance range information may be 

25 issued by the maintenance service provider or the by the 
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manager 2. 

In FIG. 6, steps Sll and S13 are carried out 
by the equipment^ such as a computer, at the maintenance 
service provider, and set the authentication information, 
5 the maintenance range information and the additional 
maintenance range information with respect to the 
maintenance target equipment 100. Steps. S21 and S23 are 
carried out by the equipment, such as a computer, set up 
in the user environment and operable by the manager 2, 

10 and set the authentication information, the maintenance 
range information and the additional maintenance range 
information with respect to the maintenance target 
equipment 100. When using the authentication 
information generated by the maintenance service 

15 provider and the maintenance range information set by 
the manager 2, the authentication information, the 
maintenance range information and the additional 
maintenance range information are set with respect to 
the maintenance target equipment 100 by the steps Sll, 

20 S13, S21 and 823. 

[ Fourth Embodiment ] 

Next, a description will be given of a fourth 
embodiment of the electronic equipment, the equipment 
managing apparatus, the equipment maintenance system, 

25 the equipment maintenance method and the computer- 
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readable storage medium according to the present 
invention^ by referring to FIGS. 7 through 9. The 
maintenance may be performed not only by sending the 
maintenance person 1 directly to the site where the 
5 electronic equipment 100 is set up, but also by the so- 
called remote maintenance. The remote maintenance 
performs the maintenance from a remote location, remote 
from the site where the equipment 100 is set up, via a 
network, a telephone line or the like. In this 

10 embodiment, it is assumed for the sake of convenience 

that the remote maintenance performs on-line maintenance. 

FIG. 7 is a system block diagram showing a 
structure of an equipment maintenance system of this 
embodiment. In FIG. 7, an equipment maintenance 

15 apparatus (or equipment managing apparatus) 200 is 

connected to equipments 100 via a firewall (F/W) 201 and 
a network 202. The equipment managing apparatus 200 is 
also connected to an equipment 100 via a telephone line 
203. The network 202 and the telephone line 203 may be 

20 formed by cable, wireless or a combination of cable and 
wireless. Each equipment 100 which is connected to the 
network 202 may be accessed from the external equipment 
managing apparatus 200 which is set up at a remote 
location from each equipment 100, and the remote 

25 maintenance of each equipment 100 may be made from the 
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equipment managing apparatus 200. Of course.^ a firewall 
(F/W) may also be provided between the network 202 and 
each equipment 100. 

FIG- 8 is a diagram showing a structure of the 
5 electronic equipment for explaining this fourth 

embodiment. In FIG. 8, those parts which are the same 
as those corresponding parts in FIGS. 1^ 4 and 5 are 
designated by the same reference numerals, and a 
description thereof will be omitted. 

10 The electronic equipment 100 shown in FIG. 8 

has a basic structure similar to those shown in FIGS. 1, 
4 and 5, but a communication, part (or means) 80 is 
provided in this embodiment. In other words, the 
maintenance person 1 visits the user and performs the 

15 on-site . maintenance in the cases shown in FIGS. 1,. 4 and 
5, but the maintenance person 1 can perform the on-line 
maintenance, that is, the remote maintenance, without 
having to actually visit the. user. For this reason, the 
equipment 100 shown in FIG. 8 is connected to the 

20 equipment managing apparatus 200 via the communication 
part 80 and the network 202 or the telephone line 203, 
Of course, the communication part 80 may be provided in 
the equipment 100 shown in any of FIGS- 1, 4 and 5. 

In this embodiment, it is necessary to carry 

25 out an on-line authentication of the equipment 100 and 
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the equipment managing apparatus 200, and thus, the 
authentication must be made via the communication part 
80. Thereafter, the equipment managing apparatus 200 
authenticates the maintenance person 1 via the network 
5 202 or a communication line such as the telephone line 
203, sets the maintenance range, and performs the remote 
maintenance . 

First, a mutual authentication is carried out 
in order to confirm the legitimacy of the maintenance 

10 person 1 or the equipment managing apparatus 200 to 

perform the maintenance, and to confirm the legitimacy 
of the maintenance target equipment 100. An 
authentication system using a combination of a privacy 
common key and a challenge response, an authentication 

15 system using a combination of a privacy key and a public 
key, an authentication system using a combination of a 
privacy key, a public key and a challenge response, and 
the like may be employed as the method of the mutual 
authentication . 

20 In this embodiment, the sequence up to the 

maintenance is basically the same as that shown in FIG. 
2, but the mutual authentication is made to confirm the 
maintenance target equipment 100 and the equipment 
managing apparatus 200 or, to confirm that the 

25 maintenance-attending person is not impersonating the 
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maintenance person 1^ before acquiring the maintenance 
range information and confirming legitimacy or validity 
thereof to perform the maintenance. In addition, since 
this embodiment performs the remote maintenance from the 
5 remote location via the communication line, it is 
desirable to encipher the information which is 
transmitted and received, in a case where the safety of 
the communication cannot be secured. In addition, even 
when not enciphering the information which is 

10 transmitted and received, it is desirable to add a 

message authenticator to the information in order to 
guarantee the safety of the information which is 
transmitted and received. 

Next, a description will be given of the 

15 generation of the authentication information and the 

maintenance range information in this fourth embodiment, 
by referring to FIG. 9. FIG. 9 is a diagram for 
explaining the setting of the authentication information 
and maintenance range information in this fourth 

20 embodiment. In FIG. 9, those parts which are the same 
as those corresponding parts in FIGS. 3 and 6 are 
designated by the same reference numerals, and a 
description thereof will be omitted. In FIG. 9, the 
left portion indicates the user environment, and the 

25 right portion indicates the maintenance service provider. 
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In order to perform the on-line maintenance 
via the communication line, it is important to 
authenticate each equipment 100 and to authenticate the 
maintenance person 1 who provides the on-line 
5 maintenance services. Information for the 

authentications may be set in each equipment 100 at the 
stage where the equipment 100 is manufactured or, when 
setting up the equipment 100. 

The maintenance service provider generates the 

10 authentication information with respect to the 

maintenance person 1. The maintenance range information 
with respect to the maintenance person 1 is issued by 
the maintenance service provider or the manager 2, and 
sent to the equipment managing apparatus 200 which 

15 performs the maintenance. When sending the maintenance 
range information to the equipment managing apparatus 
200 from the equipment or terminal at the user end which 
generates the authentication information and the 
maintenance range information, it is desirable to make 

20 the mutual authentication between the equipment managing 
apparatus 200 and the equipment 100, encipher the 
information which is transmitted and received and secure 
safety, in order to prevent a person from impersonating 
the maintenance person 1. 

25 When performing the maintenance on the 
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equipment 100, the mutual authentication is first made 
between the equipment managing apparatus 200 and the 
maintenance target equipment 100 using the 
authentication information. Thereafter, the equipment 
5 managing apparatus 200 indicates the maintenance range 
information. The maintenance target equipment 100 
confirms the legitimacy of the indicated maintenance 
range information, and sets the maintenance range. When 
the temporary additional maintenance range information 

10 exists as in the case of the third embodiment described 
above, the additional maintenance range information is 
indicated similarly, and the maintenance range is added. 
The maintenance is performed within the set maintenance 
range from the equipment managing apparatus 200 set up 

15 at the remote location. 

In FIG. 9, the step Sll is carried out by the 
equipment, such as a computer, at the maintenance 
service provider, and sets the authentication 
infoirmation and the maintenance range information with 

20 respect to the equipment managing apparatus 200. 

Accordingly, the equipment managing apparatus 200 sets 
the authentication information and the maintenance range 
information with respect to the maintenance target 
equipment 100 via the communication line. Steps S21 and 

25 S22 are carried out by the equipment, such as a computer. 
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set up in the user environment and operable by the 
manager 2, and set the authentication information and 
the maintenance range information with respect to the 
maintenance target equipment * 100 . The maintenance range 
5 information generated by the step S21 is supplied to the 
equipment managing apparatus 200 via the communication 
line- When using the authentication information 
generated by the maintenance service provider and the 
maintenance range information set by the manager 2, the 

10 authentication information and the maintenance range 
information are set with respect to the maintenance 
target equipment 100 by the steps Sll, S21 and S22 and 
the equipment managing apparatus 200. 

According to the above described procedure, it 

15 is possible to positively perform the maintenance from 
the remote location while securing the safety requested 
by the user. 

Next/ a description will be given of system 
which may be applied with each of the embodiments 

20 described above, by referring to FIG. 10 and the 
subsequent drawings . 

1: Maintenance Range Setting Procedure 

FIG. 10 is a system block diagram showing a 
system which may be applied with the first embodiment 

25 described above- In FIG. 10, those parts which are the 
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same as those corresponding parts in FIGS. 1 and 7 are 
designated by the same reference numerals^ and a 
description thereof will be omitted. 

In FIG. 10, an operating . terminal 300, a 
5 printer 100-1, a digital copying apparatus 100-2, a 

facsimile apparatus 100-3, a work station (WS) 100-4 and 
a personal computer (PC) 100-5 which are provided as 
maintenance target equipments 100, are provided in the 
user environment (equipment setup site) and connected to 

10 a network 202 such as the Internet, via a LAN 305 and a 
firewall (F/W) 301. The operating terminal 300 is 
formed by a personal computer, for example, and is 
operated by the manager 2. On the other hand, in the 
maintenance service provider, the equipment managing 

15 apparatus (operating terminal) 200 is connected to the 
network 200 via a LAN 205 and the firewall (F/W) 201. 
In FIG. 10, a maintenance-attending person or an 
operator at the maintenance service provider is denoted 
by a reference numeral 9. 

20 FIG. 11 is a flow chart for explaining an 

embodiment of a maintenance range setting procedure. In 
this case, it is assumed for the sake of convenience 
that the manager 2 sets in advance the maintenance 
person 1 for the maintenance target equipment 100 and 

25 the maintenance range in which the maintenance person 1 
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is permitted to perform the maintenance of the 
maintenance target equipment 100. In addition, it is 
assumed that the manager authenticating part 10, the 
user authenticating part 20, the access range setting 
5 part 4 0 and the equipment maintenance part 50 shown in 
FIG. 11 are provided within the maintenance target 
equipment 100, and that the maintenance target equipment 
100 is provided with an input part and a display part 
(both not shown) . The input part and the display part 

10 may be formed by a touch panel which integrally includes 
the input part and the display part. 

The user authenticating part 20 displays a 
user selection screen on the display part in a step SlOl. 
The manager 2 makes inputs from the input part related 

15 to the selection of the equipment manager and the 

manager information (ID, password, etc.) in a step S102, 
so as to supply user authentication information 21 to 
the user authenticating part 20. 

The user authenticating part 20 displays a 

20 message or the like to indicate the authenticating state 
on the display part, and supplies the manager 
authentication information of the user authentication 
information 21 to the manager authenticating part 10, in 
a step S103. The manager authenticating part 10 

25 collates the manager authentication information with the 
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authentication information which is related to the 
manager and is included in the equipment manager 
information registered in advance in a database (not 
shown) stored in the storage 61 or the like within the 
5 equipment 100, in a step S104. If the collated 

authentication information do not match, the manager 
authenticating part 10 notifies this to the user 
authenticating part 20 in a step S105. If the collated 
authentication information match, the manager 

10 authenticating part 10 acquires the permitted management 
and maintenance information as the attribute information 
of the authenticated (permitted) manager 2. The 
management and maintenance information includes the 
management and maintenance range, the maintenance term 

15 and the like. The manager authenticating part 10 

decides whether or not the maintenance term included in 
the management and maintenance information is expired, 
and if the decision result is YES, notifies the user 
authenticating part 20 that the maintenance term is 

20 expired, in a step S106. In other words, in the case 

where the step S105 or S106 is carried out, the manager 
authentication has failed, the setting of the 
maintenance range cannot be made, and the display on the 
display part is returned to the user selection screen. 

25 On the other hand, if the maintenance term is 
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not expired, the manager authenticating part 10 notifies 
the user authenticating part 20 that the manager 
authentication was successful, in a step S107. In this 
case, the user authenticating part 20 supplies the 
5 management and maintenance information including the 
access range information to the access range setting 
part 40, in a step S108. The access range setting part 
40 supplies the maintenance range information to the 
equipment maintenance part 50 to set the maintenance 

10 range, in a step S109. The equipment maintenance part 
50 displays a maintenance and management selection 
screen on the display part in a step SllO, and the 
manager 2 selects a maintenance person registration from 
the input part with respect to the equipment maintenance 

15 part 50, in a step Sill. In response to the selection 
of the maintenance person registration, the equipment 
maintenance part 50 displays a maintenance person 
registration screen shown in FIG. 12 on the display part, 
in a step S112. 

20 FIG. 12 is a diagram showing the maintenance 

person registration screen displayed on the display part. 
As shown in FIG. 12, the maintenance person registration 
screen includes an ID of the maintenance person, the 
name of the maintenance person (name of person in charge 

25 of maintenance) , the authentication information of the 
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maintenance person (maintenance person authentication 
information) , the maintenance term, and the maintenance 
range selection. Because FIG- 12 shows the maintenance 
person registration screen for a case where the 
5 maintenance target equipment 100 is the digital copying 
apparatus 100-2, the maintenance range selection 
includes basic selection and extended selection. The 
basic selection enables selection of the reading part 
and the like as the maintenance range. The extended 

10 selection enables selection of the address directory and 
the like as the maintenance range - 

When the manager 2 inputs the name of the 
maintenance person, the maintenance term, the 
maintenance range and the like to be registered from the 

15 input part, while monitoring the maintenance person 
registration screen shown in FIG. 12, and selects a 
confirm button in a step S113, the input information is 
supplied to the equipment maintenance part 50. The 
equipment maintenance part 50 registers the information 

20 of the maintenance person in the equipment management 
information which is managed by the equipment managing 
part 60, in a step S114. In addition, the equipment 
maintenance part 50 again displays the maintenance 
person registration screen shown in FIG. 12 on the 

25 display part in a step S115. When the manager 2 selects 
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an end button the maintenance person registration screen 
in a step S116, the end of the maintenance person 
registration is notified to the equipment maintenance 
part 50. In response to the end notification of the 
5 maintenance person registration, the equipment 
maintenance part 50 displays a maintenance and 
management selection screen on the display part in a 
step S117. When the manager 2 selects an end button on 
the maintenance and management selection screen in a 

10 step S118, the end notification of the maintenance and 
management selection is notified to the equipment 
maintenance part 50. In response to the end 
notification of the maintenance and management selection, 
the equipment maintenance part 50 notifies an end of the 

15 maintenance range setting procedure to the user 
authenticating part 20, in a step S119. 

In a case where the maintenance person 
registration is not included in the maintenance range, 
the maintenance person cannot be registered, and the 

20 steps SllO through S119 are not carried out. 
2.1: Maintenance Procedure 

FIG. 13 is a flow chart for explaining an 
embodiment of the maintenance procedure. In FIG. 13, 
those steps which are essentially the same as those 

25 corresponding steps in FIG. 11 are designated by the 
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same reference numerals, and a description thereof will 
be omitted. In this case, the operator of the equipment 
100 is the maintenance person 1 and not the manager 2. 
It is assumed for the. sake of convenience that the 
5 information (ID, password, etc.) for identifying the 
maintenance person 1 is stored within the manager 
authenticating part 10 or, the equipment management 
information including the information for identifying 
the maintenance person 1 is registered in advance in a 

10 database stored the storage 61 or the. like within the 
equipment 100, which is accessible from the manager 
authenticating part 10. Accordingly, it is possible to 
authenticate the maintenance person 1 by collating the 
ID and the password of the maintenance person 1. The 

15 maintenance person 1 for performing the maintenance of 

the equipment 100 goes to the equipment setup site where 
the equipment 100 is set up, and performs the 
maintenance after being authenticated by the equipment 
100 within the permitted maintenance range. 

20 In FIG, 13, the manager authenticating part 10 

acquires the permitted maintenance information, as the 
attribute information of the authenticated (permitted) 
maintenance person 1, if the collated authentication 
information match in the step S104. The maintenance 

25 information includes the maintenance range, the 
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maintenance term and the like. The manager 
authenticating part 10 decides whether or not the 
maintenance term included in. the maintenance information 
is expired, and if the decision result is YES, notifies 
5 the user authenticating part 20 that the maintenance 
term is expired, . in the step S106. 

After the step SllO, steps S121 through S127 
are carried out. The maintenance person 1 selects a 
maintenance work on the maintenance and management 

10 selection screen which is displayed on the display part, 
from the input part, in the step S121, and the selected 
maintenance work is notified to the equipment 
maintenance part 50. The equipment maintenance part 50 
displays a maintenance work input screen shown in FIG. 

15 14 on the display part within the maintenance range, in 
the step S122. 

FIG. 14 is a diagram showing the maintenance 
work input screen. Because FIG. 14 shows the 
maintenance work input screen for the case where the 

20 maintenance target equipment 100 is the digital copying 
apparatus 100-2, the reading part, the image processing 
part and the like are selectable on the maintenance work 
input screen as the maintenance target. 

When the maintenance person 1 selects the 

25 maintenance target on the maintenance work input screen. 
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from the input part, and selects an end button in the 
step .S122, the selected maintenance target is notified 
to the equipment maintenance part 50. The equipment 
maintenance part 50 performs maintenance with respect to 
5 the selected maintenance target, in the step S124, and 
displays a maintenance screen on the display part, in 
the step S125. When the maintenance person 1 selects an 
end button on the maintenance screen in the step S126, 
the end of the maintenance work is notified to the 

10 equipment maintenance part 50, and the equipment 

maintenance part 50 notifies the end of the maintenance 
work to the user authenticating part 20 in the step S127. 
2.2: Maintenance Procedure 

FIG. 15 is a flow chart for 

15 explaining another embodiment of the maintenance 
procedure. In FIG. 15, those steps which are 
essentially the same as those corresponding steps in FIG- 
13 are designated by the same reference numerals, and a 
description thereof will be omitted. In this case, it 

20 is assumed for the sake of convenience that the an IC 
card 15 for authenticating the maintenance person 1 is 
issued by the equipment managing apparatus 200 of the 
maintenance service provider, and that the maintenance 
person 1 is authenticated by using the issued IC card 15 

25 in the maintenance target equipment 100. In addition. 
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it is assumed for the sake of convenience that the user 
authenticating part 20 shown in FIG. 1 is provided with 
an IC card reader and writer (not shown) having a known 
structure. Hence, it is possible to authenticate the 
5 maintenance person 1 by reading the password (PIN: 
Personal Identification Number information) which is 
stored in the IC card 15 by the IC card writer and 
reader to be collated with the registered authentication 
information. The maintenance person 1 for performing 

10 the maintenance of the equipment 100 goes to the 

equipment setup site where the equipment 100 is set up, 
and performs the maintenance after being authenticated 
by the equipment 100 within the permitted maintenance 
range. Of course, an IC card may be issued similarly 

15 with respect to the manager 2. 

In FIG. 15, the maintenance person 1 inserts 
the IC card 15 into the IC card reader and writer of the 
maintenance target equipment 100, in a step S131. The 
user authenticating part 20 displays a message or the 

20 like to indicate the authenticating state on the display 
part, and displays a password input screen on the 
display part to urge the maintenance person 1 to input 
the password (PIN information), in a step S132. When 
the maintenance person 1 inputs the password from the 

25 input part in a step S133, the password is supplied to 
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the user authenticating part 20. 

The user authenticating part 20 supplies the 
password (PIN information) which is input to the IC card 
15. in a step S134, and collates the PIN information . with 
5 the PIN information which is stored in the IC card 15 in 
a step S135. If the collated PIN information do not 
match, the IC card 15 notifies this to the user 
authenticating part 20 in a step S136. When the step 
S136 is carried out, the authentication of the 

10 maintenance person 1 has failed, and thus, no 

maintenance work is performed, and the display on the 
display part returns to the user selection screen. On 
the other hand, if the collated PIN information match, 
the IC card 15 notifies this to the user authenticating 

15 part 20 in a step S137. In this case, the user 

authenticating part 20 makes an access to the IC card 15 
in a step S138, and reads the permitted maintenance 
information from the IC card 15 as the attribute 
information of the authenticated (permitted) maintenance 

20 person 1 in a step S139. The maintenance information 
read from the IC card 15 is supplied to the user 
authenticating part 20 in a step S140. 

The user authenticating part 20 received from 
the maintenance information supplied from the IC card 15 

25 to the manager authenticating part 10 in a step S141. 
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If the maintenance term included in the maintenance 
information is expired, the manager authenticating part 
10 notifies this to the user authenticating part 20 in a 
step S142. When the step S142 is carried out, the 
5 authentication of the maintenance person 1 has failed, 
and thus, no maintenance work is performed, and the 
display on the display part returns to the user 
selection screen. On the other hand, if the maintenance 
term included in the maintenance information is not 

10 expired, the manager authenticating part 10 supplies the 
maintenance information to the access range setting part 
40 and sets the maintenance range in a step S143. In 
addition, the access range setting part 40 supplies the 
maintenance range information to the equipment 

15 maintenance part 50 in a step S144. 

The manager authenticating part 10 makes a 
. maintenance range set notification to the user 
authenticating part 20 in a step S145. The user 
authenticating part 20 which receives the maintenance 

20 range set notification displays a message or the like 
indicating that the maintenance person 1 is 
authenticated (that is, the authentication was 
successful) on the display part in a step S14 6. The 
process after the step SllO is the same as that shown in 

25 FIG. 13. 
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2.3: Maintenance Procedure 

FIG. 16 is a flow chart for explaining another 
embodiment of the maintenance procedure. In FIG. 16, 
those steps which are essentially the same as those 
5 corresponding steps in FIG- 15 are designated by the 

same reference numerals, and a description thereof will 
be omitted. In this case, it is assumed for the sake of 
convenience that the IC card 15 for authenticating the 
maintenance person 1 is issued by the equipment managing 

10 apparatus 200. of the maintenance service provider, and 
that the maintenance person 1 is authenticated by using 
the issued IC card 15 in the maintenance target 
equipment 100. In addition, it is assumed for the sake 
of convenience that the user authenticating part 20 

15 shown in FIG. 1 is provided with an IC card reader and 
writer (not shown) having a known structure. Hence, it 
is possible to authenticate the maintenance person 1 by 
reading the password (PIN: Personal Identification 
Number information) and a public key certificate which 

20 are stored in the IC card 15 by the IC card writer and 

reader to be collated with the registered authentication 
information and public key certificate. The maintenance 
person 1 for performing the maintenance of the equipment 
100 goes to the equipment setup site where the equipment 

25 100 is set up, and performs the maintenance after being 
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authenticated by the equipment 100 within the permitted 
maintenance range. Of course, an IC card may be issued 
similarly with respect to the manager 2. 

In FIG. 16, after the step S137, the user 
5 authenticating part 20 requests the public key 

certificate stored in the IC card 15 in a step S151, and 
reads the public key certificate in a step S152. The 
read public key certificate is supplied to the user 
authenticating part 20 in a step S153, and is collated 

10 with the public key certificate which is registered in 
advance, so as to determine the legitimacy of the IC 
card 15. For example, if the public key certificate is 
invalid or the valid term is expired, the authentication 
fails and the process returns to the step SlOl. The 

15 registered public key certificate may be stored within 
the manager authenticating part 10 or the like within 
the equipment 100 or, within the operating terminal 300 
or, within the external equipment managing apparatus 200. 

When the authentication using the public key 

20 certificate is successful, the user authenticating part 
20 generates and supplies a random number to the IC card 
15 in a step S154. An operation is carried out with 
respect to the random number using the public key, so as 
to generate an authenticator in a step S155. This 

25 authenticator is supplied to the user authenticating 
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part 20 in a step S156. The authenticator is decoded 
using the registered public key^ and the authentication 
is successful if the decoded value matches the random 
number generated by the user authenticating part 20, and 
5 the authentication fails if the decoded value does not 
match the random number generated by the user 
authenticating part 20. If the authentication fails^ 
the process returns to the step SlOl. On the other hand^ 
if the authentication is successful^ the process of the 

10 step S141 and the subsequent state is carried out. 

Accordingly, the maintenance person 1 is 
authenticated by the IC card 15 in the steps S132 
through S137, and the IC card 15 of the maintenance 
person 1 is authenticated by the equipment 100 by the 

15 steps S151 through S156. Therefore, a mutual 

authentication procedure between the equipment 100 and 
the IC card 15 is carried out by the steps S132 through 
S137 and the steps S151 through S156. Of course, it is 
possible to carry out the steps S151 through S156 before 

20 the steps S132 through S137. 

2.4: Maintenance Procedure 

FIG. 17 is a flow chart for explaining another, 
embodiment of the maintenance procedure. In FIG. 17, 
those steps which are essentially the same as those 

25 corresponding steps in FIG. 15 are designated by the 
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same reference numerals^ and a description thereof will 
be omitted. In this case, it is assumed for the sake of 
convenience that the IC card 15 for authenticating the 
maintenance person 1 is issued by the equipment managing 
5 apparatus 200 of the maintenance service provider, and 
that the maintenance person 1 is authenticated by using 
the issued IC card 15 in the maintenance target 
equipment 100. In addition, it is assumed for the sake 
of convenience that the user authenticating part 20 

10 shown in FIG. 1 is provided with an IC card reader and 
writer (not shown) having a known structure. Hence, it 
is possible to authenticate the maintenance person 1 by 
reading the password (PIN: Personal Identification 
Number information) and an authentication key which are 

15 stored in the IC card 15 by the IC card writer and 

reader to be collated with the registered authentication 
information and authentication key. The maintenance 
person 1 for performing the maintenance of the equipment 
100 goes to the equipment setup site where the equipment 

20 100 is set up, and performs the maintenance after being 
authenticated by the equipment 100 within the permitted 
maintenance range. Of course, an IC card may be issued 
similarly with respect to the manager 2. 

In FIG. 17, after the step S137, the user 

25 authenticating part 20 makes a random number generation 
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request with respect to the IC card 15 in a step S161. 
A random number is generated in a step S162* The. 
generated random number is supplied to the user 
authenticating part 20 as a challenge code, in a step 
5 S163. The user authenticating part 20 carries out an 
operation with respect to the challenge code using a 
privacy key which is registered in advance within the 
equipment 100, so as to generate an authenticator in a 
step S164. The user authenticating part 20 makes an 

10 external authentication request with respect to the IC 
card 15 in a step S165. An authenticator is generated 
in a step S166, by carrying out an operation with 
respect to the random number generated in the step SI 62 
using the authentication key which is for authenticating 

15 the equipment 100 and is stored in the IC card 15. The 
authentication is successful if the generated 
authenticator matches the authenticator received from 
the user authenticating part 20, and the authentication 
fails if the generated authenticator and the received 

20 authenticator do not match. The authentication result 

is supplied to the user authenticating part 20 in a step 
S167, as a response with respect to the external 
authentication request. The process returns to the step 
SlOl if the authentication result indicates that the 

25 authentication failed. On the other hand, the process 
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advances to a step S168 if the authentication result 
indicates that the authentication is successful. 

If the authentication using the authentication 
key is successful, the user authenticating part 20 
5 generates and supplies a random number to the IC card 15 
in the step S168, and an authenticator is generated by 
carrying out an operation with respect to the random 
number using the authentication key in. a step S169. The 
generated authenticator is supplied to the user 

10 authenticating part 20 in a step S170. An authenticator 
which is generated by carrying out an operation with 
respect to the random number generated in the step S168 
using the registered authentication key is collated with 
the authenticator received from the IC card 15. The 

15 authentication is successful if the collated 

authenticators match, and the authentication fails if 
the collated authenticators do not match. The process 
returns to the step SlOl if the authentication fails. 
On the other hand, if the authentication is successful, 

20 the process advances to the step S141 shown in FIG- 15, 
the illustration of which is omitted in FIG. 17. 

Therefore, the authentication of the 
maintenance person 1 by the IC card 15 is carried out by 
the steps S132 through S137. The authentication of the 

25 equipment 100 by the IC card 15 of the maintenance 
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person 1 is carried out by the steps SX61 through S167. 
The authentication of the IC card 15 of the maintenance 
person 1 by the equipment 100 is carried out by the 
steps S168 through S170. The sequence in which the 
5 steps S132 through S137, the steps S161 trough S167, and 
the steps S168 through S170 are carried out is not 
limited to that shown in FIG. 17. 
2.5 Maintenance Procedure 

FIG. 18 is a flow chart for explaining another 

10 embodiment of the maintenance procedure. In FIG. 18, 
those steps which are essentially the same as those 
corresponding steps in FIGS. 15 through 17 are 
designated by the same reference numerals, and a 
description thereof will be omitted. In this case, it 

15 is assumed for the sake of convenience that the IC card 
15 for authenticating the maintenance person 1 is issued 
by the equipment managing apparatus 200 of the 
maintenance service provider, and that the maintenance 
person 1 is authenticated by using the issued IC card 15 

20 in the maintenance target equipment 100. In addition, 
it is assumed for the sake of convenience that the user 
authenticating part 20 shown in FIG. 1 is provided with 
an IC card reader and writer (not shown) having a known 
structure. Hence, it is possible to authenticate the 

25 maintenance person 1 by reading the password (PIN: 
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Personal Identification Number information) and a public 
key certificate which are stored in the IC card 15 by 
the IC card writer and reader to be collated with the 
registered authentication information and public key 
5 certificate. The maintenance person 1 for performing 
the maintenance of the equipment 100 goes to the 
equipment setup site where the equipment 100 is set up, 
and performs the maintenance after being authenticated 
by the equipment 100 within the permitted maintenance 

10 range. Of course, an IC card may be issued similarly 
with respect to the manager 2. 

In FIG. 18, after the step S137, the user 
authenticating part 20 makes a public key certificate 
set request and sets a public key certificate of the 

15 equipment 100 which is registered in advance into the IC 
card 15, in a step S171. A response indicating whether 
or not the setting of the public key certificate was 
successful is supplied tom the IC card 15 to the user 
authenticating part 20 in a step S172, and the process 

20 returns to the step SlOl if the setting of the public 
key certificate fails. On the other hand, if the 
setting of the public key certificate is successful, the 
maintenance person 1 possessing the IC card 15 which is 
set with the public key certificate of the equipment 100 

25 can thereafter perform the maintenance of the equipment 
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100^ and the process advances to a step S173. The user 
. authenticating part 20 makes a public key certificate 
inspection request which requests inspection of the 
public key certificate of the equipment 100, with 
5 respect to the IC card 15, in the step S173. The public 
key certificate set in the IC card 15 and the public key 
certificate supplied from the user authenticating part 
20 are collated in a step S174, so as to inspect the 
public key certificate which is set in the IC card 15. 

10 A response indicating the inspection result is supplied 
from the IC card 15 to the user authenticating part 20 
in a step S175. In this case, the public key 
certificate of the equipment 100 is set in the IC card 
15, and thus, the collated public key certificates match 

15 and the inspection is successful, so that the process 
advances to a step S161-1. The process returns to the 
step SlOl if the collated public key certificates do not 
match and the inspection fails. 

The user authenticating part 20 makes a random 

20 number generation request with respect to the IC card 15 
in the step S161-1, and a random number is generated in 
a step S162-1. The generate random number is supplied 
from the IC card 15 to the user authenticating part 20 
as a challenge code, in a step S163-1. The user 

25 authenticating part 20 generates an authenticator by 
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carrying out an operation with respect to the challenge 
code using a privacy key which is registered in advance 
within the equipment 100, in a step S164-1. Then, the 
user authenticating part 20 makes an external 
5 authentication request with respect to the IC card 15 in 
a step S165-1. An authenticator is generated by 
carrying out an operation with respect to the random 
number generated in the step S162-1, using the public 
key stored in the IC card 15, in a step S166-1. The 

10 generated authenticator is collated with the 

authenticator supplied from the user authenticating part 
20, and the authentication is successful if the collated 
authenticators match and the authentication fails if the 
collated authenticators do not match. An authentication 

15 result is supplied from the IC card 15 to the user 

authenticating part 20 as a response with respect to the 
external authentication request, in a step S167-1. The 
process returns to the step SlOl if the authentication 
result indicates that the authentication failed. On the 

20 other hand, if the authentication result indicates that 
the authentication was successful, the steps S151 
through S156 are carried out, and the process thereafter 
advances to the step S141 shown in FIG. 15, the 
illustration of which is omitted in FIG. 18. 

25 Therefore, the maintenance person 1 is 
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authenticated by the IC card 15 in the steps S132 
through S137. The equipment 100 is authenticated by the 
IC card 15 of the maintenance person 1 in the steps S171 
through S175 and S161-1 through S167-1. In addition^ 
5 the IC card 15 of the maintenance person 1 is 

authenticated by the equipment 100 in the steps S151 
through S156. The sequence in which the steps S132 
through S137, the steps S171 through S175 and S161-1 
trough S167-1, and the steps S151 through S156 are 

10 carried out is not limited to that shown in FIG. 18. 

In the maintenance procedures described above ^ 
the various screens are displayed on the display part of 
the maintenance target equipment 100. However^ the 
various screens may be displayed on a display part of 

15 the operating terminal 300 which is operated by the 
manager 2. 

3.1: Changing Maintenance Range 

When changing or adding the maintenance range, 
it is possible to apply the second and third embodiments 

20 to the system shown in FIG. 10. 

A description will be given of a case where 
the portion of the maintenance target equipment 100 
which actually requires maintenance exceeds the 
maintenance range and the maintenance range is 

25 temporarily changed from the equipment 100 to enable the 
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required maintenance, by referring to FIG. 19. FIG. 19 
is a flow chart for explaining an embodiment of a 
maintenance range changing procedure for the case where 
the maintenance range is changed from the maintenance 
5 target equipment 100. In FIG. 19, it is assumed for the 
sake of convenience that the manager authenticating part 
10, the user authenticating part 20, the access range 
setting part 4 0 and the equipment maintenance part 50 
are provided within the maintenance target equipment 100, 

10 and that the maintenance target equipment 100 is 

provided with an input part and a display part (both not 
shown) . The input part and the display part may be 
formed by a touch panel which integrally includes the 
input part and the display part. In FIG. 19, those 

15 steps which are essentially the same as those 

corresponding steps in FIG. 11 are designated by the 
same reference numerals, and a description thereof will 
be omitted. 

In FIG. 19, after the step SllO, the manager 2 
20 selects a maintenance range change from the input part 
with respect to the equipment maintenance part 50, in a 
step S211. In response to the selection of the 
maintenance range change, the equipment maintenance part 
50 displays a maintenance range changing screen shown in 
25 FIG. 20 in a step S212. 
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FIG. 20 is a diagram showing the maintenance 
range changing screen which is displayed on the display 
part of the equipment 100. As shown in FIG* 20, the 
maintenance range changing screen includes the ID of the 
5 maintenance person, the name of the maintenance person, 
the maintenance term, ■ the changed maintenance term, the 
maintenance range selection and the additional range 
valid term. Since FIG. 20 shows the maintenance range 
changing screen for the case where the maintenance 

10 target equipment 100 iis the digital copying apparatus 
100-2, the maintenance range selection includes the 
basic selection and the extended selection. The reading 
part and the like may be selected by the basic selection, 
and the address directory and the like may be selected 

15 by the extended selection. Maintenance range selection 
columns for the basic and extended selections are used 
to display the present setting and to input the setting 
after the changing of the maintenance range. 

When the manager 2 inputs the changed 

20 maintenance term, the maintenance range and the like 
from the input part while monitoring the maintenance 
range changing screen shown in FIG. 20 and selects a 
confirm button in a step S213, the input information is 
supplied to the equipment maintenance part 50. The 

25 equipment maintenance part 50 registers the information 
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of the maintenance person in the equipment management 
information managed by the equipment managing part 60, 
in a step S214. In addition, the equipment maintenance 
part 50 again displays the maintenance range changing 
5 screen shown in FIG. 20 on the display part, in a step 
S215. When the manager 2 selects an end button on the 
maintenance range changing screen in a step S216, the 
end of the maintenance range change is notified to the 
equipment maintenance part 50. In response to the end 

10 notification of the maintenance range change, the 

equipment maintenance part 50 displays the maintenance 
and management selection screen on the display part in 
the step S117. When the manager 2 selects the end 
button on the maintenance and management selection 

15 screen in the step S118, the end notification of the 

maintenance and management selection is notified to the 
equipment maintenance part 50. In response to the end 
notification of the maintenance and management selection, 
the equipment maintenance part 50 notifies an end of the 

20 maintenance range setting procedure to the user 
authenticating part 20, in the step S119. 

In the case where the maintenance person 
registration is not included in the maintenance range, 
the maintenance range cannot be changed, and the steps 

25 SllO, S211 through S216 and S117 through S119 are not 
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carried out. 

3.2: Maintenance Range Change 

A description will be given of a case where 
*the portion of the maintenance target equipment 100 
5 which actually requires maintenance exceeds the 
maintenance range and the maintenance range is 
temporarily changed from the operating terminal 300 
shown in FIG. 10 to enable the required maintenance, by 
referring to FIG. 21. FIG. 21 is a flow chart for 

10 explaining an embodiment of the maintenance range 

changing procedure for the case where the maintenance 
range is changed from the operating terminal 300. In 
this case, the operating terminal 300 functions as an 
equipment managing apparatus. It is assumed for the 

15 sake of convenience that the IC card 15 for 

authenticating the maintenance person 1 and an IC card 
25 for authenticating the manager 2 are issued. For 
example, the IC card 15 is issued from the equipment 
managing apparatus 200, and the IC card 25 is issued 

20 from the operating terminal 300. In addition, in the 
following description, it is assumed for the sake of 
convenience that the IC card 15 is read by an IC card 
reader and writer (not shown) of the maintenance target 
equipment 100 and the IC card 25 is read by an IC card 

25 reader and writer (not shown) of the operating terminal 
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300. 

In FIG. 21, steps S220 through S227 are 
basically the same as steps SlOl and S131 through S136 
shown in FIG. 15, except that the IC card 25 is inserted 
5 in the step S220 and the process is between the IC card 
25 and the operating terminal 300 and the display part 
thereof, and a description thereof will be omitted. In 
addition, a mutual authentication between the operating 
terminal 300 and the IC card 25 in a step S228 may be 

10 carried out similarly to the mutual authentication 

between the equipment 100 and the IC card 15 in FIG. 16, 
and a description thereof will be omitted- The process 
returns to the step S220 if the mutual authentication 
fails, and the process advances to a step S229 if the 

15 mutual authentication is successful. 

The operating terminal 300 notifies the 
manager 2 that the mutual authentication was successful, 
by displaying a -message or the like on the display part 
of the operating terminal 300 in the step S229. The 

20 operating terminal 300 displays a maintenance range 
changing screen shown in FIG. 22 on the display part 
thereof in a step S230. The manager 2 specifies the 
maintenance target equipment 100 on the maintenance 
range changing screen and inserts the IC card 15 in the 

25 maintenance target equipment 100 in the step S230. 
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FIG. 22 is a diagram showing the maintenance 
range changing screen which is displayed on the display 
part of the operating terminal 300. As shown in FIG. 22/ 
the maintenance range changing screen includes the ID of 
5 the maintenance person, the name of the maintenance 

person, the maintenance target equipment, the setup site 
(or location) the maintenance term, the changed 
maintenance term, the maintenance range selection and 
the additional range valid term. Since FIG. 22 shows 

10 the maintenance range changing screen for the case where 
the maintenance target equipment 100 is the digital 
copying apparatus 100-2, the maintenance range selection 
includes the basic selection and the extended selection. 
The reading part and the like may be selected by the 

15 basic selection, and the address directory and the like 
may be selected by the extended selection. Maintenance 
range selection columns for the basic and extended 
selections are used to display the present setting and 
to input the setting after the changing of the 

20 maintenance range. 

A mutual authentication between the operating 
terminal 300 and the IC card 15 in a step S232 may be 
carried out similarly to the mutual authentication 
between the equipment 100 and the IC card 15 in FIG. 16, 

25 and a description thereof will be omitted. The process 
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returns to the step S220 if the mutual authentication 
fails, and the process advances to a step S233 if the 
mutual authentication is successful . The operating 
terminal 300 requests the maintenance information with 
5 respect to the IC card 15 in the step S233. The 

maintenance information is read from the IC card 15 in a 
step S234, and the read maintenance information is 
. supplied to the operating terminal 300 in a step S235. 
The operating terminal 300 displays the maintenance 

10 information on the maintenance range changing screen 
described above in a step S236. When the manager 2 
inputs a change in the maintenance range on the 
maintenance range changing screen and selects the 
confirm button in a step S237, the operating terminal 

15 300 supplies maintenance range changing information to 

the IC card 15 in a step S238, and the maintenance range 
changing information is written into the IC card 15 in a 
step S239 . A result of writing the maintenance range 
changing information to the IC card 15 is notified to 

20 the operating terminal 300 in a step S240. If the 
maintenance term of the IC card 15 is expired, the 
operating terminal 300 deletes the maintenance range 
changing information written in the IC card 15 to 
deactivate the IC card 15 in a step S241. The operating 

25 terminal 300 again displays the maintenance range 
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changing screen shown in FIG. 22 on the display part of 
the operating terminal 300 in a step S242. When the 
manager 2 selects the end button on the maintenance 
range changing screen in a step S243, the end of the 
5 maintenance range change is notified to the operating 
terminal 300 . 

3.3: Adding Maintenance Range 

A description will be given of a case where 
the portion of the maintenance target equipment 100 

10 which actually requires maintenance exceeds the 

maintenance range and a maintenance range is temporarily 
added from the operating terminal 300 to enable the 
required maintenance, by referring to FIG. 23. FIG. 23 
is a flow chart for explaining an embodiment of a 

15 maintenance range adding procedure for the case where 
the maintenance range is added from the operating 
terminal 300. In this case, the operating terminal 300 
functions as an equipment managing apparatus. It is 
assumed for the sake of convenience that the IC card 15 

20 for authenticating the maintenance person 1 and an IC 
card 25 for authenticating the manager 2 are issued. 
For example, the IC card 15 is issued from the equipment 
managing apparatus 200, and the IC card 25 is issued 
from the operating terminal 300. In addition, in the 

25 following description, it is assumed for the sake of 
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convenience that the IC card 15 is read by an IC card 
reader and writer (not shown) of the maintenance target 
equipment 100 and the IC card 25 is read by an IC card 
reader and writer (not shown) of the operating terminal 
5 300. In FIG. 23, those steps which are essentially the 
same as those corresponding steps in FIG. 21 are 
designated by the same reference numerals^ and a 
description thereof will be omitted. 

In FIG. 23, after the step S236, when the 

10 manager 2 inputs an addition of a maintenance range on a 
maintenance range adding screen shown in FIG. 24 which 
is displayed on the display part of the operating 
terminal 300 and selects a confirm button in a step S237, 
the operating terminal 300 supplies maintenance range 

15 adding information to the IC card 15 in a step S248. 

The maintenance range adding information is written into 
the IC card 15 in a step S24 9. The addition of the 
maintenance range includes addition of a maintenance 
target equipment, addition of a maintenance range, a 

20 valid term of added maintenance range (added range valid 
term) and the like. 

FIG. 24 is a diagram showing the maintenance 
range adding screen which is displayed on the display 
part of the operating terminal 300. As shown in FIG. 24, 

25 the maintenance range adding screen includes the ID of 
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the maintenance person^ the name of the maintenance 
person^ the maintenance target equipment, the setup site 
(or location) , the maintenance term, the maintenance 
range selection and the additional range valid term. 
5 Since FIG. 24 shows the maintenance range adding screen 
for the case where the maintenance target equipment 100 
is the digital copying apparatus 100-2, the maintenance 
range selection includes the basic selection and the 
extended selection. The reading part and the like may 

10 be selected by the basic selection, and the address 

directory and the like may be selected by the extended 
selection. Maintenance range selection columns for the 
basic and extended selections are used to display the 
present setting and to input the setting after the 

15 changing of the maintenance range. 

A result of the writing of the maintenance 
range adding information into the IC card 15 is notified 
to the operating terminal 300 in a step S250. If the 
maintenance term of the IC card 15 is expired, the 

20 operating terminal 300 deletes the maintenance range 
adding information written in the IC card 15 to 
deactivate the IC card 15 in a step S251. The operating 
terminal 300 again displays the maintenance range adding 
screen shown in FIG. 24 on the display part of the 

25 operating terminal 300 in a step S252. When the manager 
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2 selects the end button on the maintenance range adding 
screen in a step S253, the end of the maintenance range 
adding is notified to the operating terminal 300. 

FIG. 25 is a flow chart for explaining an 
5 embodiment of the maintenance procedure after the 

maintenance range is added as described above. In FIG. 
25, steps S260 through S266 are essentially the same as 
the steps SlOl and S131 through S136 shown in FIG. 15, 
and a description thereof will be omitted. 

10 A mutual authentication between the equipment 

100 and the IC card 15 in a step S268 may be carried out 
similarly to the mutual authentication between the 
equipment 100 and the IC card 15 in FIG. 16, and a 
description thereof will be omitted. The process 

15 returns to the step S260 if the mutual authentication 
fails, and the process advances to a step S269 if the 
mutual authentication is successful. 

The user authenticating part 20 makes access 
to the IC card 15 in the step S269, so as to read the 

20 permitted maintenance information from the IC card 15, 
as the attribute information of the authenticated 
(permitted) maintenance person 1, in a step S270. The 
read maintenance information includes the maintenance 
range and the maintenance term. The maintenance 

25 information read from the IC card 15 is supplied to the 
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user authenticating part 20 in a step S271. Accordingly^ 
the steps S269 through S271 correspond to the steps S138 
through S14 0 shown in FIG. 15. The user authenticating 
part 20 makes access to the IC card 15 in a step S272, 
5 and reads the additional maintenance information from 
the IC card 15 in a step S273. The read additional 
maintenance information includes the maintenance range 
and the maintenance period- The additional maintenance 
information read from the IC card 15 is supplied to the 

10 user . authenticating part 20 in a step S274. 

Steps S275 through S287 which are carried out 
thereafter are similar to the steps S141^ S143 through 
S145^ SllO and S121 through S127 shown in FIG. 15, and a 
description thereof will be omitted. 

15 4.1: Maintenance Permit Issuance 

FIG. 2 6 is a system block diagram showing a 
system which enables changing of the maintenance range 
by issuing a maintenance permit. In FIG. 26, those 
parts which are the same as those corresponding parts in 

20 FIG. 10 are designated by the same reference numerals, 
and a description thereof will be omitted. In the 
system shown in FIG. 2 6, a maintenance permit issuing 
apparatus 207 is provided in the maintenance service 
provider. 

25 In the case where the IC card 15 for 
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authenticating the maintenance person 1 and the IC card 
25 for authenticating the manager 2 are issued, a 
maintenance permit which enables temporary changing of 
the maintenance range may be issued from the maintenance 
5 service provider so as to temporarily change the 
maintenance range of the maintenance person 1. 

A description will be given of the case where 
the maintenance permit which enables temporary changing 
of the maintenance range is issued from the maintenance 

10 service provider, by referring to FIG. 27. FIG. 27 is a 
flow chart for explaining an embodiment of a maintenance 
permit issuing procedure for issuing the maintenance 
permit from the maintenance service provider. In FIG. 
27, it is assumed for the sake of convenience that the 

15 IC card 15 of the maintenance person 1 is inserted into 
the IC card reader and writer of the maintenance target 
equipment 100 and the IC card 25 of the manager 25 is 
inserted into the IC card read and writer of the 
operating terminal 300. 

20 In FIG- 27, steps S320 through S336 are 

similar to the steps S220 through S236 shown in FIG. 21, 
except that the equipment managing apparatus 200 and a 
maintenance-attending person 9 of the maintenance 
service provider are related to the process, and a 

25 description thereof will be omitted. The equipment 
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managing apparatus 200 displays the maintenance 
information on a maintenance range adding screen similar 
to the maintenance range adding screen shown in FIG. 24, 
in a step S336. When the maintenance-attending person 9 
5 inputs the addition of the maintenance range on the 
maintenance range adding screen and selects a confirm 
button in a step S337, a maintenance permit issue 
instruction is supplied to the maintenance permit 
issuing apparatus 207 in a step S338- The maintenance 

10 permit issuing apparatus 200 supplies a maintenance 

permit issue request to the maintenance permit issuing 
apparatus 207 in a step S339. The maintenance permit 
issue request includes the maintenance range adding 
information. Hence, the maintenance permit issuing 

15 apparatus 207 issues a maintenance permit and supplies 
permit information to the equipment managing apparatus 
200 in a step S340. The permit information includes the 
maintenance permit including the maintenance range 
adding information and/or link information of the 

20 maintenance permit. Communication between the equipment 
managing apparatus 200 and the maintenance permit 
issuing apparatus 207 may be made by carrying out a 
mutual authentication and/or enciphered communication, 
so as to improve the security. The equipment managing 

25 apparatus 200 supplies the permit information to the IC 
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card 15 in a step S341, and the permit information is 
written into the IC card in a step S342. A result of 
writing the permit information into the IC card 15 is 
notified to the equipment managing apparatus 200 in a 
5 step S343. If the maintenance term of the IC card 15 is 
expired, the equipment managing apparatus 200 deletes 
the maintenance range adding information written in the 
IC card 15 and deactivates the IC card 15 in a step S344. 
The equipment managing apparatus 200 again displays the 

10 maintenance range adding screen on the display part of 
the equipment managing apparatus 200 in a step S34 5. 
When the maintenance-attending person 9 selects the end 
button on the maintenance range adding screen, the end 
of the maintenance range adding is notified to the 

15 equipment managing apparatus 200 in a step S34 6. 

FIG. 28 is a flow chart for explaining an 
embodiment of the maintenance procedure after the 
maintenance permit described above is issued. In FIG. 
28, those steps which are essentially the same as those 

20 corresponding steps in FIG. 25 are designated by the 

same reference numerals, and a description thereof will 
be omitted. 

In FIG. 28, after the step S269, the user 
authenticating part 20 supplies a permit information 

25 acquisition request to the IC card 15 in a step S372, 
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and the permit information is read from the IC card 15 
in a step S373. The read permit information is supplied 
to the user authenticating part 20 in a step S374. In 
this case, it is assumed for the sake of convenience 
5 that the permit information includes the link 

information of the maintenance permit, and does not 
include the maintenance permit itself. Hence, the user 
authenticating part 20 supplies a permit acquisition 
request to the maintenance permit issuing apparatus 207 

10 based on the link information within the permit 

information, in a step S375. The maintenance permit 
issuing apparatus 207 which receives the permit 
acquisition request supplies the maintenance permit to 
the user authenticating part 20 in a step S376. The 

15 communication between the maintenance permit issuing 

apparatus 207 and the user authenticating part 20, that 
is, the maintenance target equipment 100, may be made by 
carrying out a mutual authentication and/or enciphered 
communication, so as to improve the security. Hence, 

20 the process of the step S275 and subsequent steps is 
carried out using the maintenance range adding 
information included in the maintenance permit. In FIG. 
28, the illustration of the step S282 and the subsequent 
steps is omitted. 

25 4.2: Maintenance Permit Issuance 
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FIG. 2 9 is a system block diagram showing a 
system which enables changing of the maintenance range 
by issuing a maintenance permit. In FIG. 29, those 
parts which are the same as those corresponding parts in 
5 FIG. 26 are designated by the same reference numerals, 
and a description thereof will be omitted. In the 
system shown in FIG. 29, a maintenance permit issuing 
apparatus 307 is provided in the equipment setup site. 
In this case, the maintenance permit issuing apparatus 
10 207 may be omitted. Furthermore, the fourth embodiment 
may be applied in the case of a system provided with 
both the maintenance permit issuing apparatuses 207 and 
307. 

A description will be given of a case where 
15 the maintenance permit which enables the temporary 
changing of the maintenance range is issued at the 
equipment setup site, by referring to FIG. 30. FIG. 30 
is a flow chart for explaining another embodiment of the 
maintenance permit issuing procedure for the case where 
20 the maintenance permit is issued at the equipment setup 
site. In FIG. 30, it is assumed for the sake of 
convenience that the IC card 15 of the maintenance 
person 1 is inserted into the IC card reader and writer 
of the maintenance target equipment 100, and the IC card 
25 25 of the manager 2 is inserted into the IC card reader 
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and writer of the operating terminal 300. 

In FIG. 30, steps S420 through 446 are similar 
to the steps S320 through S34 6 shown in FIG. 21, except 
that the maintenance permit issuing apparatus 307 at the 
5 equipment setup site is related to the process, and a 
description thereof will be omitted. In the step S440, 
the communication between the operating terminal 300 and 
the maintenance permit issuing apparatus 307 may be made 
by carrying out a mutual authentication and/or 

10 enciphered communication, so as to improve the security'. 
4.3: Maintenance Permit Issuance 

Next, a description will be given of the 
maintenance permit issuing procedure and the maintenance 
procedure for a case where the remote maintenance is 

15 carried out as in the fourth embodiment described above. 
As described above, FIG. 29 also shows the system which 
may be applied with the fourth embodiment. 

A description will be given of a case where a 
maintenance permit for remote maintenance (hereinafter 

20 simply referred to as a remote maintenance permit) , 
which enables temporary changing of the maintenance 
range, is issued from the maintenance service provider, 
by referring to FIG. 31. FIG. 31 is a flow chart for 
explaining an embodiment of a remote maintenance permit 

25 issuing procedure for a case where the remote 
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maintenance permit is issued from the maintenance 
service provider. In FIG. 31, it is assumed for the 
sake of convenience that the IC card 15 of the 
maintenance person 1 is inserted into the IC card reader 
5 and writer of the maintenance target equipment 100, and 
the IC card 25 of the manager 2 is inserted into the IC 
card reader and writer of the operating terminal 300. 

The process shown in FIG. 31 is essentially 
the same as the process shown in FIG. 21, except that 

10 the maintenance permit that is issued is the remote 

maintenance permit. For this reason, in FIG. 31, those 
steps which are essentially the same as those 
corresponding steps in FIG. 27 are designated by the 
same reference numerals, and a description thereof will 

15 be omitted. 

FIGS. 32 and 33 are flow charts for explaining 
an embodiment of the maintenance procedure after the 
remote maintenance permit is issued as described above. 
It is assumed for the sake of convenience that the IC 

20 card 15 is inserted into the IC card reader and writer 
(not shown) of the equipment managing apparatus 200. 

In FIG. 32, steps S560 through S568 are 
essentially the same as the steps S360 through S368 
shown in FIG. 28, except that the equipment managing 

25 apparatus 200 is related to the process, and a 
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description thereof will be omitted. Similarly, in FIG. 
33, steps S569 through S576 are essentially the same as 
the steps S369 through S376 shown in FIG. 28, except 
that the equipment managing apparatus 200 is related to 
5 the process, and a description thereof will be omitted. 
Of course, the maintenance-attending person 9 may 
perform the operation in place of the maintenance person 
1. 

In FIG. 32, the equipment managing apparatus 

10 200 displays an operation screen on the display part of 
the equipment managing apparatus 200 in a step S601. 
The maintenance person 1 selects the equipment 100, 
which is the target of the remote maintenance, on the 
operation screen, in a step S602, and thus, the 

15 maintenance target equipment 100 is supplied (or 

notified) to the equipment managing apparatus 200. The 
equipment managing apparatus 200 displays a message on 
the display part to indicate a connecting state, and 
makes a connection request with respect to the 

20 communication part 80 of the maintenance target 

equipment 100, in a step S603. The communication part 
80 supplies a response indicating that the connection 
was successful, in response to the connection request, 
to the equipment managing apparatus 200 in a step S604. 

25 Accordingly, the equipment managing apparatus 200 
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supplies the authentication information (apparatus 
authentication information) of the equipment managing 
apparatus 200 to the user authenticating part 20 of the 
maintenance target equipment 100^ in a step S605. The 
5 user authenticating part 20 authenticates the equipment 
managing apparatus 200 based on the apparatus 
authentication information supplied from the equipment 
managing apparatus 200 and an apparatus authentication 
information which is registered in advance, in a step 

10 S606. An authentication result is supplied from the 
user authenticating part 20 to the equipment managing 
apparatus 200 in a step S607. If the authentication 
based on the apparatus authentication information fails, 
the process returns to the step S560. 

15 On the other hand, if the authentication based 

on the apparatus authentication information is 
successful, the equipment managing apparatus 200 makes 
an equipment authentication information request with 
respect to the user authenticating part 20 in a step 

20 S608. The user authenticating part 20 generates 

equipment authentication information in response to the 
equipment authentication information request in a step 
S609, and supplies the generated equipment 
authentication information to the equipment managing 

25 apparatus 200 in a step S610. The equipment managing 
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apparatus 200 authenticates the equipment 100 based on 
the equipment authentication information which is 
registered in advance and the equipment authentication 
information received from the user authenticating part 
5 20. The process returns to the step S560 if the 

authentication fails, and the process advances to a step 
S611 if the authentication is successful. The equipment 
managing apparatus 200 supplies a privacy key for 
communication (hereinafter referred to as communication 

10 privacy key) to the communication part 80 in the step 

S611, and the communication part 80 set and generates a 
privacy key in a step S612. The communication part 80 
supplies the generated privacy key to the equipment 
managing apparatus 200 in a step S613. Therefore, the 

15 communication between the equipment managing apparatus 
200 and the equipment 100 can be made using the privacy 
key. 

In FIG. 33, after the step S576^ the equipment 
managing apparatus 200 carries out a mutual 

20 authentication with the IC card 15 by communicating with 
the manager authenticating part 10 and the user 
authenticating part 20 via the communication part 80, in 
a step S621. The process returns to the step S560 shown 
in FIG. 32 if the mutual authentication fails. On the 

25 other hand, if the mutual authentication is successful. 
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the equipment managing apparatus 200 supplies the 
management and maintenance information to the access 
range setting part 40 and the manager authenticating 
part 10, in a step S622. Hence, the manager 
5 authenticating part 10 supplies the management and 

maintenance information to the access range setting part 
4 0 and sets the management and maintenance range in- a 
step S623. In addition, the access range setting part 
4 0 supplies the maintenance range information to the 

10 equipment maintenance part 50 in a step S624. The 

manager authenticating part 10 makes a maintenance range 
set notification with respect to the equipment managing 
apparatus 200 in a step S625. The equipment managing 
apparatus 200 which receives the maintenance range set 

15 notification displays a maintenance operation input 
screen shown in FIG. 34 on the display part of the 
equipment managing apparatus 200, in a step S626. 

FIG- 34 is a diagram showing the maintenance 
operation input screen. As shown in FIG. 34, the 

20 maintenance operation input screen displays the 
maintenance target equipment, the setup site (or 
location) , maintenance targets within the maintenance 
range, and the like. Because FIG. 34 shows the 
maintenance operation input screen for the case where 

25 the maintenance target equipment 100 is the digital 
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copying apparatus 100-2, the maintenance targets within 
the maintenance range include the reading part, the 
image processing part, the image forming part and the 
like . 

5 When the maintenance person 1 selects the 

maintenance target on the maintenance operation input 
screen in a step S627, information of the selected 
maintenance target is supplied to the equipment managing 
apparatus 200. The equipment managing apparatus 200 

10 supplies a maintenance request with respect to the 

maintenance target to the equipment maintenance part 50, 
in a step S628. The equipment maintenance part 50 
performs the maintenance of the maintenance target 
according to the maintenance request, in a step S629. A 

15 result of the maintenance that is performed is supplied 
from the equipment maintenance part 5 0 to the equipment 
managing apparatus 200 in a step S630. The equipment 
managing apparatus 200 displays a maintenance result 
display screen which indicates the result of the 

20 maintenance, on the display part of the equipment 
managing apparatus 200, in a step S640. When the 
maintenance person 1 selects an end button on the 
maintenance result display screen in a step S641, the 
end of the maintenance operation is notified to the 

25 equipment managing apparatus 200. In response to this 
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maintenance operation end notification, the equipment 
managing apparatus 200 supplies a maintenance operation 
end notification to the equipment maintenance part 50 in 
a step S642. The equipment maintenance part 50 carries 
5 out an ending process, such as erasing temporary data, 
in response to the maintenance operation end 
notification, in a step S64 3. The equipment maintenance 
part 50 makes an end notification with respect to the 
communication part 80 in a step S644. Therefore, the 

10 line between the maintenance target equipment 100 and 
the equipment managing apparatus 200 via the 
communication part 80 is disconnected. 

Thereafter, the equipment managing apparatus 
200 deletes the maintenance range changing information 

15 which is written into the IC card 15 to deactivate the 
IC card 15, in a step S645. Further, the equipment 
managing apparatus 200 displays a user selection screen 
on the display part of the equipment managing apparatus 
200 in a step S646. 

20 4.4: Maintenance Permit Issuance 

Next, a description will be given of the 
maintenance permit issuing procedure and the maintenance 
procedure for a case where the remote maintenance is 
carried out as in the fourth embodiment described above. 

25 As described above, FIG. 29 also shows the system which 
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may be applied with the fourth embodiment. 

A description will be given of a case where a 
remote maintenance permit, which enables temporary 
changing of the maintenance range, is issued at the 
5 equipment setup site, by referring to FIG. 35. FIG- 35 
is a flow chart for explaining an embodiment of the 
remote maintenance permit issuing procedure for a case 
where the remote maintenance permit is issued at the 
equipment setup site. In FIG. 35, it is assumed for the 

10 sake of convenience that the IC card 25 of the manager 2 
is inserted into the IC card reader and writer of the 
operating terminal 300. 

The process shown in FIG. 35 is essentially 
the same as the process shown in FIG. 31, except that 

15 the issuance of the remote maintenance permit is 

requested at the equipment setup site. In other words, 
the issuance of the remote maintenance permit is 
requested from the operating terminal 300, and the 
remote maintenance permit issue request may be made with 

20 respect to the maintenance permit issuing apparatus 307 
at the equipment setup site or, with respect to the 
maintenance permit issuing apparatus 207 of the 
maintenance service provider. For this reason, a 
description of those steps shown in FIG. 35 which are 

25 essentially the same as the corresponding steps in FIG. 
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31. will be omitted. Steps S720 through S730 shown in 
FIG. 35 correspond to the steps S320 through S330 shown 
in FIG. 31, and the steps S737 through 3740, S745 and 
S746 shown in FIG. 35 correspond to the steps S337 
5 through S340, S345 and S346 shown in FIG. 31. In FIG. 
35, the steps S730 and S745 display a maintenance and 
management input screen on the display part, but this 
maintenance and management input screen may be similar 
to the maintenance range changing screen and the 

10 maintenance range adding screen described above. In 

addition, the step S737 selects the maintenance range to 
be added and inputs the additional maintenance range. 

The maintenance procedure after the remote 
maintenance permit is issued as described above may 

15 basically be the same as the maintenance procedure shown 
in FIGS. 32 and 33, and an illustration and description 
thereof will be omitted. In this case, the maintenance 
procedure only differs from the maintenance procedure 
shown in FIGS. 32 and 33, in that the remote maintenance 

20 permit is acquired from the maintenance permit issuing 
apparatus 307 at the equipment setup site or, from the 
maintenance permit issuing apparatus 207 of the 
maintenance service provider. 

In each of the embodiments described 

25 heretofore, the mutual authentication between the 
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equipments may be realized by the combination of the 
equipment authentication by the IC card and the IC card 
authentication by the equipment, as described hereunder. 
5.1: Mutual Authentication Between Equipments 
5 FIG. 36 is a flow chart for explaining an 

embodiment of a mutual authentication procedure between 
equipments. For the sake of convenience, it is assumed 
that the IC card 15 is used. However, the process may 
be carried out similarly using the IC card 25. 

10 In FIG. 36, the equipment managing apparatus 

200 makes a random number generation request with 
respect to the IC card 15 in a step SlOOl, and the IC 
card 15 generates a random number in a step S1002 and 
supplies the generated random number to the equipment 

15 managing apparatus 200, as a challenge code, in a step 
S1003. The equipment managing apparatus 200 supplies 
the random number to the user authenticating apparatus 
20, together with an authenticator generation request, 
in a step S1004. The user authenticating part 20 

20 generates an authenticator from the random number using 
an authentication key which is registered in advance in 
the equipment 100, in a step S1005. The user 
authenticating part 20 supplies the generated 
authenticator to the equipment managing apparatus 200 in 

25 a step S1006. The equipment managing apparatus 200 
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supplies the authenticator to the IC card 15, together 
with an external authentication request, in a step S1007. 
The IC card 15 carries out an operation with respect to 
the random number which is generated by the step S1002, 
5 using an authentication key for authenticating the 
equipment 100, so as to decide whether an operation 
result matches the authenticator received from the 
equipment managing apparatus 200, in a step S1008. It 
is judged that the external authentication was 

10 successful if the operation result matches authenticator, 
and that the external authentication failed if the 
operation result does not match the authenticator. The 
IC card 15 supplies a response indicating the 
authentication result to the equipment managing 

15 apparatus 200, in a step S1009. The process ends if the 
response indicates that the external authentication 
failed. 

On the other hand, if the response indicates 
that the external authentication was successful, the 

20 equipment managing apparatus 200 makes a random number 
generation request with respect to the user 
authenticating part 20, in a step SIOIO. The user 
authenticating part 20 generates a random number in a 
step SlOll, and supplies the random number to the 

25 equipment managing apparatus 200 in a step S1012. The 
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equipment managing apparatus 200 supplies the random 
number to the IC card 15, together with an internal 
authentication request, in a step S1013. The IC card 15 
carries out an operation with respect to the random 
5 number using the authentication key for authenticating 
the equipment 100, to generate an authenticator in a 
step S1014, and supplies the generated authenticator to 
the equipment managing apparatus 200 in a step S1015. 
The equipment managing apparatus 200 supplies the 

10 authenticator to the user authenticating part 20 in a 

step S1016. The user authenticating part 20 carries out 
an operation with respect to the random number which is 
generated by the step SlOll, using the authentication 
key for authenticating the equipment, so as to decide 

15 whether an operation result matches the authenticator, 
in a step S1017. It is judged that the internal 
authentication was successful if the operation result 
matches the authenticator, and that the internal 
authentication failed if the operation result does not 

20 match the authenticator. The user authenticating part 
20 supplies a response indicating the authentication 
result to the equipment managing apparatus 200, in a 
step S1018. The process ends if the response indicates 
that the internal authentication failed. 

25 The steps SlOOl through S1009 carry out the 



-104- 



authentication (external authentication) of the 
equipment 100 by the IC card 15. The steps SlOlO 
through S1018 carry out the authentication (internal 
authentication) of the IC card 15 by the equipment 100. 
5 Hence^ the mutual authentication between the equipments 
can be made by the external authentication and the 
internal authentication . 

5.2: Mutual Authentication Between Equipments 

FIG. 37 is a flow chart for explaining another 
10 embodiment of the mutual authentication procedure 

between equipments. For the sake of convenience, it is 
assumed that the IC card 15 is used. However, the 
proceiss may be carried out similarly using the IC card 
25. 

15 In FIG. 37, the equipment managing apparatus 

200 makes a public key certificate request with respect 
to the equipment 100, in a step S2000. The user 
authenticating part 20 issues a public key certificate 
in a step S2001, and supplies the public key certificate 

20 to the equipment managing apparatus 200 in a step S2002- 
The equipment managing apparatus 200 sets the public key 
certificate with respect to the IC card 15 in a step 
S2003. The IC card 15 sets the public key certificate 
therein and supplies a response indicating whether or 

25 not the setting of the public key certificate was 
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successful to the equipment managing apparatus 200^ in a 
step S2004. The process ends if the response indicates 
that the setting of the public key certificate failed. 

On the other hand, if the response indicates 
that the setting of the public key certificate was 
successful, the equipment managing apparatus 200 makes a 
public key certificate inspection request with respect 
to the IC card 15, in a step S2005. The IC card 15 
inspects the public key certificate of the equipment 100 
in a step S2006, and supplies a response indicating 
whether or not the inspection was successful to the 
equipment managing apparatus 200, in a step S2007. The 
process ends if the response indicates that the 
inspection of the public key certificate failed. If the 
response indicates that the inspection of the public key 
certificate was successful, the equipment managing 
apparatus 200 makes a random number generation request 
with respect to the IC card 15 in a step S2008. The IC 
card 15 generates a random number in a step S2009, and 
supplies the generated random number to the equipment 
managing apparatus 200, as a challenge code, in a step 
S2010. 

The equipment managing apparatus 200 supplies 
the random number to the user authenticating part 20, 
together with an authenticator generation request, in a 
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step S2011. The user authenticating part 20 generates 
an authenticator from the random number using a privacy 
key which is registered in advance in the equipment 100, 
in a step S2012. In addition, the user authenticating 
5 part 20 supplies the generated authenticator to the 

equipment managing apparatus 200 in a step S2013. The 
equipment managing apparatus 200 supplies the 
authenticator to the IC card 15, together with an 
external authentication request, in a step S2014. The 

10 IC card 15 carries out an operation with respect to the 
random nxomber which is generated by the step S2009, 
using an authentication key for authenticating the 
equipment 100, and decides whether or not an operation 
result matches the authenticator, in a step S2015. It 

15 is judged that the external authentication was 

successful if the operation result and the authenticator 
match, and that the external authentication failed if 
the operation result and the authenticator do not match. 
The IC card 15 supplies a response indicating the 

20 authentication result to the equipment managing 

apparatus 200 in a step S2016. The process ends if the 
response indicates that the external authentication 
failed. 

On the other hand, if the response indicates 
25 that the external authentication was successful, the 
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equipment managing apparatus 200 makes a public key 
certificate request with respect to the IC card 15 in a 
step S2017. The IC card 15 reads the public key 
certificate which is set by the step S2003, in a step 
5 S2018, and supplies the read public key certificate to 
the equipment managing apparatus 200, in a step S2019. 
If the public key certificate is inspected and the 
inspection result indicates that the public key 
certificate is invalid due to expired valid term or the 

10 like, it is judged that the internal authentication 
failed, and the process ends. 

If inspection result indicates that the public 
key certificate is valid, the equipment managing 
apparatus 200 makes a random number generation request 

15 with respect to the user authenticating part 20 in a 

step S2020. The user authenticating part 20 generates a 
random number in a step S2021, and supplies the 
generated random number to the equipment managing 
apparatus 200 in a step S2022. The equipment managing 

20 apparatus 200 supplies the random number to the IC card 
15, together with an internal authentication request, in 
a step S2023. The IC card 15 carries out an operation 
with respect to the random number using a privacy key to 
generate an authenticator in a step S2024, and supplies 

25 the generated authenticator to the equipment managing 
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apparatus 200 in a step S2025. The equipment managing 
. apparatus 200 supplies the authenticator to the user 
authenticating part 20 in a step S2026. The user 
authenticating part 20 carries out an operation with 
5 respect to the random number which is generated by the 
step S2021, using the authentication key for 
authenticating the equipment 100, and decides whether or 
not an operation result matches the authenticator, in a 
step S2027. It is judged that the internal 

10 authentication was successful if the operation result 
and the authenticator match, and that the internal 
authentication failed if the operation result and the 
authenticator do not match. The user authenticating 
part 20 supplies a response indicating the 

15 authentication result to the equipment managing 

apparatus 200 in a step S2028. The process ends if the 
response indicates that the internal authentication 
failed. 

The steps S2000 through S2016 carry out the 
20 authentication (external authentication) of the 

equipment 100 by the IC card 15. The steps S2017 
through S2028 carry out the authentication (internal 
authentication) of the IC card 15 by the equipment 100. 
Hence, the mutual authentication between the equipments 
25 can be made by the external authentication and the 
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internal authentication . 

In each of the embodiments described above, 
various kinds of authenticating media may be used in 
place of the IC cards 15 and 25. It is desirable that 
5 the authenticating media such as the IC cards 15 and 25 
are provided with a memory to which various data can be 
written and from which the various data can be read, and 
a processor such as a CPU which can carry out a data 
processing. However, in the case of an authenticating 

10 medium which is not provided with a processor, a 
processor within a reader and writer to which the 
authenticating medium is inserted or, a processor within 
an apparatus having therein the reader and writer, may 
be used to carry out various data processing. 

15 The electronic equipment according to the 

present invention corresponds to the maintenance target 
equipment of the described embodiments. The equipment 
managing apparatus according to the present invention 
corresponds to the equipment managing apparatus (or 

20 equipment maintenance apparatus) or the operating 

terminal at the equipment setup site. The equipment 
maintenance system according to the present invention is 
formed by the equipment managing apparatus of the 
maintenance service provider or, the equipment managing 

25 apparatus and the maintenance permit issuing apparatus 
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of the maintenance service provider or, the operating 
terminal at the equipment setup site or, the operating 
terminal and the maintenance permit issuing apparatus at 
the equipment setup site or, a combination of the 
5 apparatus of the maintenance service provider and the 
apparatus at the equipment setup site. The equipment 
maintenance method according to the present invention is 
employed in such an equipment maintenance system. The 
computer-readable storage medium according to the 

10 present invention stores a program which causes a 

computer forming the apparatus within the equipment 
managing system to variably set the maintenance range 
and/or the management range of the maintenance target 
equipment. The computer-readable storage medium may be 

15 formed by any kind of recording medium capable of 

storing the program in a computer-readable manner. For 
example, recording media such as magnetic recording 
media, optical recording media, magneto-optical 
recording media and semiconductor memory devices may 

20 form the computer-readable storage medium. 

Further, the present invention is not limited 
to these embodiments, but various variations and 
modifications may be made without departing from the 
scope of the present invention. 



25 



